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Abstract. A quantitative model of concurrent interaction is introduced. The basic objects 
are linear combinations of partial order relations, acted upon by a group of permutations that 
represents potential non-determinism in synchronisation. This algebraic structure is shown to 
provide faithful interpretations of finitary process algebras, for an extension of the standard 
notion of testing semantics, leading to a model that is both denotational (in the sense that the 
internal workings of processes are ignored) and non-interleaving. Constructions on algebras and 
their subspaces enjoy a good structure that make them (nearly) a model of differential linear 
logic, showing that the underlying approach to the representation of non-determinism as linear 
combinations is the same. 
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1 Introduction 

The theory of concurrency has developed several very different models for interactive processes, 
focusing on different aspects of computation. Among those, process calculi are an appealing 
framework, because the formal language approach is well suited to modular reasoning, allowing 
to study sophisticated systems by means of abstract programming primitives for which powerful 
theoretical tools can be developed. They are also the setting of choice for extending the vast 
body of results of proof theory to less sequential settings. However, the vast majority of the 
semantic studies on process calculi like the 7r-calculus have focused on the so-called interleaving 
operational semantics, which is the basic definition of the dynamic of a process: the interaction of 
a program with its environment is reduced to possible sequences of transitions, thus considering 
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that parallel composition of program components is merely an abstraction that represents all 
possible ways of combining several sequential processes into one. In Hoare's seminal work on 
Communicating Sequential Processes [20], this is even an explicit design choice. 

There is clearly something unsatisfactory in this state of things. Although sophisticated 
theories have been established for interleaving semantics, most of which are based on various 
forms of bisimulation, they fundamentally forget the crucial (and obvious) fact that concurrent 
processes are intended to model situations where some events may occur independently and event 
explicitly in parallel. This fact is well known, and the search for non interleaving semantics for 
process calculi is an active field of research, with fruitful interaction with proof theory and 
denotational semantics. Recently, the old idea of Winskel's interpretation of CCS in event 
structures [351 [32] has been revisited by Crafa, Varacca and Yoshida to provide an actually non- 
interleaving operational semantics for the 7r-calculus, using extensions of event structures [llj . 
Event structures are also one of the starting points of extensions of game semantics to non- 
sequential frameworks, for instance in asynchronous games [25] and concurrent extensions of 
ludics 18J. In a neighbouring line of research, the recent differential extension of linear logic is 
known to be expressive enough to represent the dynamics of the 7r-calculus [T71 [TB] . However 
the implications of this fact in the search for denotational semantics of the 7r-calculus are still 
unclear, in particular the quantitative contents of differential linear logic lacks a proper status 
in concurrency. 

This paper presents a new semantic framework that addresses this question, following previous 
work by the author [5] on the search for algebraically pleasant denotational semantics of process 
calculi. The first step was to introduce in the 7r-calculus an additive structure (a formal sum 
with zero) that represents pure non-determinism, and this technique proved efficient enough to 
provide a readiness trace semantics |29] with a complete axiomatization of equivalence for finite 
terms. The second step presented here further extends the space of processes with arbitrary 
linear combinations, giving a meaning to these combinations in terms of quantitative testing. 
This introduction of scalar coefficients was not possible in the interleaving case, because of the 
combinatorial explosion that arose even when simply composing independent traces; moving to 
a non-interleaving setting through a quotient by homotopy of executions is the solution to this 
problem. Growing the space of processes to get more algebraic structure is also motivated by 
the idea that better structured semantics gives cleaner mathematical foundations for the object 
of study, in the hope that the obtained theory will be reusable for different purposes and that it 
will benefit from existing mathematical tools. 

Informal description An order algebra is defined on an arena, which represents the set of 
all observable events that may occur in the execution of a process. Basic interaction scenarii, 
named plays, are partial order relations over finite subsets of the arena. We then postulate two 
principles: 

• Linear combinations are used to represent non-determinism, which, although not the defin- 
ing feature, is an unavoidable effect in concurrent interaction. Coefficients form the quan- 
titative part of the model, the first thing they represent is how many times a given play 
may occur in a given situation. They can also represent more subtle things, like under 
which conditions a given play is relevant. This allows for the representation of features 
such as probabilistic choice, in which case coefficients will be random variables. In general, 
coefficients are taken in an arbitrary semiring with some additional properties. This use 
of linear combinations is a novelty of the differential A-calculus and subsequent work 16J, 
although a decomposition of processes as formal linear combinations was first proposed by 
Boreale and Gadducci [7], albeit without the quantitative aspect we develop here. 
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• The fact that some events may be indistinguishable by the environment of a process, 
typically different inputs (or outputs) on the same channel, is represented by a group 
action over the arena. Each element of the group acts as a permutation that represents a 
possible way of rearranging the events. A comparable approach was used in particular in 
AJM game semantics [2J H] to represent the interchangeability of copies in the exponentials 
of linear logic. 

Some words are borrowed from game semantics, since our objects have similarities with games, 
but this is not a "game" semantics, at most a degenerate one. In particular, there is no real 
notion of player and opponent interacting, since there is no polarity that could distinguish them 
or distinguish inputs and outputs. The term "strategy" does not really apply either since there 
is no notion of choosing the next move in a given situation. Under these circumstances, calling 
anything a "game" is kind of far fetched. 

Outline Section [2] defines order algebras from these ideas. Arenas, plays and linear combi- 
nations of plays (simply called vectors) are defined, with the two basic operations on vectors: 
synchronisation, which extends the merging of orders to take permutations into account, and 
outcome, which is a scalar that acts as the "result" of a process. Two vectors are equivalent if 
they are indistinguishable by synchronisation and outcome, and the order algebra is the quotient 
of the vectors by this equivalence. 

Section [3] describes constructs involving order algebras and their subspaces. Cartesian and 
tensor products are described in terms of interaction, and the symmetric algebra is constructed 
in the framework. This algebra is of particular interest because it represents the basic source 
of non-determinism in interaction, namely the fact that any number of interchangeable actions 
may occur at a given synchronisation point. 

Section 2] shows how order algebras can be used to provide fully abstract models of process 
calculi, with the example of the 7rl-calculus. The crucial ingredient is a quantitative extension 
of the standard notion of testing, from which the present work stems. Standard forms of testing 
are obtained as particular choices of the semiring of scalars. 

Future work Order algebras as defined and studied in the present work are very finitary in 
nature, because vectors are finite linear combinations of finite plays. This setting already has an 
interesting structure, as this paper illustrates, but it is unable to represent any kind of potentially 
infinitary behaviour. This includes identity functions over types that are not finite dimensional, 
and as a consequence we do not get a model of differential linear logic. Handling infinity is the 
natural next step, and for this we need to add topology to the structure, in order to get a sensible 
notion of convergence. Order algebras will then appear not only as the quotient of combinations 
of plays by equivalence, but as the separated and completed space generated by plays. In this 
line of thought, the dual space should play an important role, in order to define duality in the 
logical sense. 

Another direction is to exploit the fact that the semiring of scalars is a parameter of the 
construction. In particular, going from a semiring § to the semiring of S- valued random variables 
over a given probabilistic space properly extends the model to a probabilistic one. Similarly, 
using complex numbers and unitary transformations could provide a way to represent quantum 
computation in the same framework. Developing these ideas correctly is a line of research by 
itself, as the question of denotational models for these aspects of computation is known to be a 
difficult matter. 
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Related work Part of the construction of order algebras is concerned with modelling of fea- 
tures like name binding or creation of fresh names. The topic of proper formal handling of binders 
in syntax is a vast topic known as nominal techniques (see for instance Gabbay's survey [T5]). 
and it has been applied in particular to construct operational semantics for process calculi in 
a generic way [28J E3- We feel that our approach is orthogonal: arenas present a flattened 
version of the name structure, in which remains no notion of name creation or binding (or only 
indirectly); permutations are used only to relate different occurrences of names. Moreover, local 
names, by essence, are absent from order algebras, since our intent is to build a denotational 
model, in which internal behaviour is forgotten. 

Our work aims in particular at constructing models of interaction that are not interleaving, 
a featured sometimes referred to as "true concurrency". This objective, of course, is not new, 
and the reference model in this respect is that of event structures. A relationship between our 
framework and event structures can be formulated: using the simplest semiring of coefficients, 
namely {0, 1} with 1 + 1 = 1 (thus losing any "quantitative" content), linear combinations of 
plays are simply finite sets of plays. The set of plays interpreting a given process turns out to be 
exactly the set of configurations of the event structure interpreting this process, forgetting any 
internal events. We do not develop this correspondence in the present paper, as it is of limited 
interest in the current state of development of order algebras, however it will certainly be of great 
interest in the development of the theory, notably when applying it to modelling probabilistic 
processes, for which event structure semantics has been developed [UGH]- Besides, the use of 
symmetry in event structures [371 I33| has been recently identified as a crucial feature; we defer 
to future work the comparison with our approach based on group actions. 

The shift from sets of configurations to formal linear combinations in the interpretation of 
processes has a notable precedent in Boreale and Gadducci's interpretation of CSP processes 
as formal power series [7, 8 , building on Rutten's work relating coinduction and formal power 
series [3T]. Boreale and Gadducci's work differs from the present paper in two respects. Firstly, 
their interpretation of the semiring of coefficient is of a different nature: sum and product are 
seen as internal and external choice respectively, while we interpret them as internal choice and 
parallel composition without interaction. Secondly, their technical development uses only idem- 
potent semirings (where x + x — x for all x) , which does not handle quantitative features, and 
leads inevitably to interleaving semantics (as proved in our setting by Theorem 01] and remarks 
in Section [33]). Nevertheless, Rutten's approach to coinduction, and the idea of coinductive def- 
initions by behavioural differential equations is certainly relevant to our work and is a promising 
source of inspiration for the extension of the present setting to infinitary behaviours. 

2 Order algebras 
2.1 Arenas and plays 

An order algebra is defined on an arena, which represents a fixed set of potential events. The 
arena is equipped with a permutation group that represents the non-determinism that arises 
when synchronising events, as described below. Then a play is a partial order relation over a 
finite subset of the arena. 

1 Definition. An arena A is a pair (lA^G^) where \X\ is a countable set (the web of X) and 
G x is a subgroup of the group (5(|A|) of permutations of \X\, If G x is trivial, then X is called 
static and it is identified with its web. 

The points in the web are called events, rather than moves, since there is no actual notion of 
players interacting. Permutations represent the fact that there may be several different ways for 
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two processes to synchronise. In process calculus language, permutations can be seen as relating 
different occurrences of the same action label. 

2 Example. When modelling a simple process algebra like CSP [20] over an alphabet A (with no 
value passing), we can use a web like AxN, where N is the set of natural numbers; (a, i) is 
interpreted as the i-th copy of a (any other infinite set than N would do: the actual values are 
irrelevant). The permutation group will consist of all permutations of A x N that leave the first 
member unchanged in each pair: different occurrences of a given event can be freely permuted, 
but obviously they cannot be exchanged for events of a different name. 

3 Example. When modelling a calculus like CCS the same arena can be used as in CSP, 
taking for A the set of action labels, including polarities, that is N l+l {u | u £ N} if N is the set 
of names. 

4 Example. Things get more subtle when modelling a calculus with name passing like the tt- 
calculus [27] , For the monadic case, the arena will consist of triples (e, a, i) where e is a polarity 
(input or output), a is a name (either a free name or a name bound by an action) and i is 
an occurrence number. Names bound by different input events will be considered different: in 
process terms, instead of u(x).P \ u(x).Q, write u{x\).P[x\/ x\ \ u(x2)-P[x2l 'x\. The considered 
permutations are those that respect the name structure: if a maps an event u(x\) to an event 
u(x2), then it must map any event involving x± to an event of the same type involving X2 instead. 
Private names, like a in {ua){a.P | a.Q), will not be represented in arenas, since by definition 
they cannot be involved in interaction with the environment, unless they are communicated by 
scope extrusion, as in (ya)ua, in which case they will be modelled the same way as binding input 
prefixes. This construction is developed in more detail in Section 21 

5 Definition. A play over X is a pair s — (\s\, ^ s ) where \s\ is a finite subset of \X\ (the support) 
and ^ s is a preorder over \s\; the set of plays over X is written S(X). A play s is called consistent 
if the relation ^ s is a partial order relation (i.e. if it is acyclic). 

The intuition is that a play represents a possible way a process may act: the support contains 
the set of all events that will actually occur, the preorder represents scheduling constraints for 
these events. Consistency means that these constraints are not contradictory, i.e. that they do 
not lead to a deadlock. Synchronisation, defined below, consists in combining constraints from 
two plays, assuming they have the same events. The primitive definition of plays as pre-orders 
is a way to make it a total operator by separating it from the consistency condition: two plays 
can synchronise even if their scheduling constraints are not compatible, but then the result is 
inconsistent. 

6 Example. We will represent a (consistent) play graphically as the Hasse diagram of its order 
relation, with each node labelled by the event's name. By convention, when two events are part 
of the same orbit under G^, we use the same name with different indices: 

This represents a play with support {a, bx, b%, c, d, e}, with the order 
relation such that a < b±, a < 62, bi < d, c < 62, &2 < d and 62 < e, 
in an arena that has a permutation that swaps b\ and 62. 

7 Definition. For r, s 6 S{X) with \r\ = \s\, the synchronisation of r and s is the play 

r*s:= (|r|,« r U <.)*), 

where (■)* denotes the reflexive transitive closure. Given a finite subset A of \X\, define the 
A-neutral play as := {A, \&a) where id,4 is the identity relation. 
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8 Example. We have the following synchronizations: 

(v° 3 H«, it) -(}[)■ ir)-(.jr)- 

The second one leads to an inconsistent play, since the union of the order relations is cyclic. 

Note that synchronisation is a very restrictive operator because it requires the event sets to 
be equal. The possibility of synchronising on some events while keeping the others indepen- 
dent, which is a natural notion, will be defined in Section [3.11 using this primitive form of total 
synchronisation. 

Commutativity of * is immediate from the definition. Associativity is also clear: for r, s, t € 
S(X), (r * s) *t and r * (s *t) are defined if and only if \r\, \s\, \t\ are equal, and in this case we 
have ^( r *s)*t — (^r U U ^j)* = ^ r *(s*t)- Because of the constraint on supports, there cannot 
be a neutral element. However, among plays of a given support A, the neutral play eA is actually 
neutral for synchronisation. 

We now define the action of the permutation group G x over the set of plays. Since there 
is usually no ambiguity, we overload the notation for group actions: given a G G x , for x G X 
we write ax for the image of x, for A C X we write a A for the set of images {ax \ x G A}, and 
similarly for r G S(X) we write ar for the play r permuted by a, as defined below. 

9 Definition. Let X be an arena. The action of a permutation a G G x on a play r G S(X) is 
defined as 

ar := (a\r\, {(ax, ay) | (x,y) G < r }). 
The orbit of a play r in S(X) is the set 

G x (r) := {ar | a G G x }. 

We refer the reader to some reference textbook (for instance Lang's Algebra [23 ) for details 
on the standard group-theoretic notions in use here. For reference, given a group G acting on 
a set X , the stabilizer of a point x G X in the action of G is, by definition, the subgroup of G 
consisting of all the a G G that leave x unchanged, i.e. ax = x. The pointwise stabilizer of a 
set A C X is the subgroup of those that leave each point in A unchanged, as opposed to the 
setwise stabilizer which includes all permutations that leave the set A unchanged as a whole (i.e. 
{ax | x G A} — A). The index of a subgroup H in a group G, written (H : G), is the number of 
left cosets of H in G, that is the cardinal of {aH | a G G}. When H is a normal subgroup of G, 
the index (H : G) is the cardinal of the quotient group G/H. 

10 Definition. Let X be an arena and r be a play in S(X). Let be the stabilizer of r in the 
action of G x over S(X) and let Gj^| be the pointwise stabilizer of |r| in G , then the multiplicity 
of r in X is the index of G X \ in G^" : 

(i x (r) := (G?:Gft). 

Hence, the multiplicity of r is the number of different ways one can permute r into itself. 
Indeed, the definition as (G r : Gi r i) exactly means the number of permutations of r into itself 
(elements of G r ), up to permutations that leave each point of \r\ invariant (elements of G| r |), in 
other words fi (r) is the order of the group {c|| r i | o~ G G, ar = r}, which is always finite since 
the support \r\ is finite. 
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11 Example. Using the same conventions as in Example [SI we have 
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Both plays have the same support, there are 4 permutations of this support: b\ and 62 can be 
exchanged, idem for c\ and ci. In the first case if we exchange 61 with 62 and c\ with C2, we 
get the same play (permuting the b but not the c yields a different play) . In the second case, no 
permutation can yield the same play. 

2.2 Linear combinations 

The set of plays of an arena X is independent of the group G, but our idea is that plays that 
are permutations of each other should be considered equivalent, since permutations exchange 
occurrences of indistinguishable actions. In the presence of permutations, however, there are 
several ways to synchronise two plays, so in order to extend the definition of synchronisation we 
have to be able to consider combinations of possible plays. For genericity, and because our aim 
is to get a quantitative account of interaction, we will use linear combinations, with coefficients 
in an unspecified commutative semiring. 

12 Definition. A commutative semiring § is a tuple (S, +, ■, 0, 1) such that (§, +, 0) and (S, ■, 1) are 
commutative monoids and for all x, y, z G § it holds that x-(y + z)=x-y + x- z and x • = 0. 
A semimodule over § is a commutative monoid (M, +, 0) with an action (•) : S x M — > M that 
commutes with addition on both sides and satisfies A ■ (jj, ■ x) = (A • fx) ■ x for all A,fi G § and 
x £ M. A commutative semialgebra over § is a semimodule M with a bilinear operation that is 
associative and commutative. 

Terminology about semirings, semimodules and semialgebras is not standard, in particular 
some definitions do not require both neutrals. Sometimes, the neutrals are not required to be 
distinct (they are equal if and only if the semiring is a singleton, but this is a degenerate case that 
we will not consider). In the above definitions, if all elements of S have additive inverses, then 
§ is a (commutative unitary) ring, and the semimodules and semialgebras are actually modules 
and algebras (indeed, the action of § imposes the existence of additive inverses in them too). If 
§ is a field, we get the usual notions of vector space and algebra. 

13 Definition. Let S be a commutative semiring. The integers of § are the finite sums of 1 including 
the empty sum 0, the non-zero integers are the finite non-empty sums. We call S regular if for 
every non-zero integer n € §, for all x, y E S, nx = ny implies x = y. We call S rational if every 
non-zero integer has a multiplicative inverse. 

In particular, regularity applied to x — 1 and y = imposes that no non-empty sum of 1 can 
be equal to 0, in other words § has characteristic zero. The rationality condition means that it 
is possible to divide by non-zero natural numbers, or in more abstract terms that the considered 
semiring is a semimodule over the semiring of non-negative rationals. This obviously implies 
regularity. 

Two important cases of rational semirings will be considered here. The first case is that of 
commutative algebras over the field Q of rational numbers, which includes fields of characteristic 
zero (among which rational, real and complex numbers) and commutative algebras over them. 
The second case is when addition is idempotent, which includes so-called tropical semirings [3D] , 
and the canonical examples are that of min-plus and max-plus semirings. Boolean algebras with 
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disjunction as sum and conjunction as product are another typical example. In this case, all 
integers except are equal to 1, so they obviously have multiplicative inverses. 

Throughout this paper, unless explicitly stated otherwise, § is any semiring. Note that the 
semiring N of natural numbers and the ring Z of integers are regular but not rational. Indeed, 
when using natural numbers as scalars, some properties of order algebras will be lost, for instance 
the existence of bases. Hence some statements will explicitly require S to be regular or rational. 

For an arbitrary set X, a formal linear combination over X is a function from X to § that has 
a value other than on a finite number of points. Formal linear combinations over X, with sum 
and scalar product defined pointwise, form the free §-semimodule over X and an element x E X 
is identified with its "characteristic" function S x : X — >• S, such that 5 x {x) = 1 and S x (y) = for 
all y ^ x. If X is finite, then the set of formal linear combinations is the §-semimodulc § x . For 
an arbitrary subset A of a §-semimodulc E, we denote by (A) s , or simply (A), the submodulc 
of E generated by A, i.e. the smallest submodule of E that contains A, that is the set of finite 
linear combinations of elements of A. 

14 Definition. Let X be an arena. The preliminary order algebra C$(X) is the free S-semimodule 
over S(X). The outcome is the linear form [-J over C§(X) such that [r\ = 1 when r is consistent 
and \r\ = otherwise. 

We usually keep the semiring § implicit in our notations. Vectors in C(X) are finite linear 
combination of plays in X, they represent the collection of all possible behaviours of a finite 
process. The coefficients can be understood as the amount of each behaviour that is present 
in the process. Examples in further sections also illustrate that § can be chosen to represent 
conditions on the availability of each behaviour. The outcome represents how relevant each play 
is, and by the intuition exposed in the previous section, plays with cyclic dependencies cannot 
happen, so they are considered irrelevant. 

15 Example. Consider the CSP term P = a^(b \\ c) \ a^c (remember that in CSP | is the choice 
operator, and || is parallel composition). An interpretation of P in a preliminary order algebra 
containing only a, 6, c as events could be 

<>+ 2 <-«>+(!«) +2 (n) + (\f) 

where we have a summand for each partial run of P. The coefficient 2 in the second and fourth 
summands represent the fact that there are two ways to perform only a, and two ways to perform 
a then c, depending on the choice one has done. 

16 Definition. Let X be an arena. Permuted synchronisation in X is the bilinear operator || over 
C{X) such that for all plays r, s e S(X), 

r || s := nx (s) r * s' 

s'£G X (s) 
\s'\ = \r\ 

Observe that this sum is always finite. The reason is that each s' can be written as for some 
a e G x , and \as\ = \r\ implies cr|s| = |r|. Since as is determined by the action of a on |s|, there 
is at most one image of s for each bijection between |s| and |r|. Since |r| and |s| are finite, the 
number of such bijections is finite. 
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17 Example. Considering again the plays in Example [SI we have 




The first term in the sum corresponds to the identity permutation, the second one exchanges <Xi 
and <Z2. Here, all plays involved have multiplicity 1. 

18 Permuted synchronisation is similar to the parallel composition operator of CSP, in the case 
of processes defined on the same alphabet: in r \\ s, every event of r must be synchronized with 
some event of the same name in s. There is a difference between plays and processes, however, 
in that in a play, every event must occur, whereas in a process, an action may be cancelled, for 
lack of a partner action to synchronize with. 

Any partial function / : S(X) n — s- S(X) extends as an n-linear operator / : C(X) n —> 
C(X), by setting / (ri, . . . , r„) = when /(ri, . . . , r„) is undefined. This applies in particular to 
synchronisation, which yields a bilinear operator * over C(X). As a slight abuse of notations, we 
will write it simply as * when there is no ambiguity. 

Using this convention, permuted synchronisation can be seen as a generalisation of non- 
permuted synchronisation, since when the permutation group is trivial, all multiplicities are 1 
and all orbits are singletons. Although || is a generalisation of *, we still use different notations, 
since both operators are of interest in a given non-static arena. The non-permuted version will 
be referred to as static synchronisation to avoid confusion. 

19 Definition. Let X be an arena. Observational equivalence in C§(A) is defined as u «x u' when 
[u || v\ = |y || v\ for all v £ Cg(X). The order algebra over X is Ag(X) := C s (X)/ks x - 

The scalar [u \\ v\ is understood as the result of testing a process u against a process v. 
It linearly extends the basic case of single plays: [r * s\ is 1 if r and s are compatible and 
otherwise; [r \\ s\ is the number of different ways r and s can be permuted so that they become 
compatible. Hence the definition: u « v if u and v are indistinguishable by this testing protocol. 

20 Example. Any inconsistent play is observationally equivalent to 0, since synchronising it with 
any order yields an inconsistent play. Hence the synchronisation of Example [T7] implies 




21 Lemma. Let X be an arena. For all u € C(X) and a G G x , we have u ~ au. 

Proof. Since plays generate the module C(X), clearly u ~ au if and only if [u || s\ — [au || s\ 
for all play s. Since u is a finite linear combination of plays, the definition of synchronisation on 
plays extends as [u || sj = fj, (s) X)s'eG(s) L u * S 'J ■ ^ ^ s c l ear that for all a 6 G we have a{u*s') = 
au * as' , moreover outcomes are preserved by permutations, so we have [u * s'J = [au * as' J 
for all s', hence [u \\ s\ = /i (s) X)s'eG(s) L<™ * <TS 'J • Since a acts as a permutation on the orbit 
G (s), as' and s' range over the same set, so we have || s\ = [au \\ s\ , and finally u ~ au. □ 

The fact that observational equivalence is preserved by linear combinations is immediate from 
the definition, since synchronisation and outcome are linear. As a consequence, in each orbit 
G(s), we can choose a representant s such that each vector in C(X) is equivalent to a linear 
combination of representants. 
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22 Definition. Let X be an arena. A choice of representants for X is a pair of an idempotent 
map A n- A over Vf (\X\) and an idempotent map r H> r over 5(A) such that for all r G 5(A) 
|r| = |r|, and for all r,s6 5(A), r = s if and only if r = ers for some a G G^. 

So a choice of representants picks one play in each orbit under G x in such a way that 
representants have the same support if it is possible. There always exists such choices, and in 
the sequel we assume that each arena comes with a particular choice, written r •— > r x . The 
choice function over 5(A) induces a projection in C(A) by linearity, and for all u G C{X) we 
have u k, u x by Lemma 1211 

23 Definition. Let X be an arena. Saturation in X is the linear map satx : C{X) — > C(X) such 
that for each play r, 

sat x r:= ^ ar where G A := {a\ A | a G G x , a A = A} . 
o-eGM 

The set G A is the group of permutations of A induced by G, it is isomorphic to the quotient 
G{A}/Ga where G{a} is the setwise stabilizer of A in G and G^ is its pointwise stabilizer (it is 
easy to check that the latter is a normal subgroup of the former). 

24 Example. Again using the conventions of Example we have 

-(^)-(^) +2 (^) +2 ( C ^)' 

where the factor 2 comes from the fact that exchanging C2 and C3 in the original play does not 
change it. Indeed, the multiplicity of this play is 2. 

25 Lemma. Let X be an arena. For all r,s£ 5(A) such that \r\ — \s\ we have s \\ r = s * satr. 

Proof. We use the notations of Definition I2U1 As a ranges over G' r ', ar ranges over all the 
elements of the orbit of r under G that have the same support as r. Moreover, each play in the 
orbit is hit a number of times equal to \x (r) , so for any play s we have the expected equality. □ 

In particular, this implies the equivalence u \\ v k, u 5 sat v for all u and v. We will use this 
fact in Proposition [2^] to get a representation of arbitrary order algebras in static ones. 

26 Proposition. Permuted synchronisation is compatible with observational equivalence. Up to 
observational equivalence, it is associative and commutative. 

Proof. We first prove that permuted synchronisation is strictly associative. Consider three plays 
r, s, t. For all a G G x we have r || as = r \\ s, so we can assume that r, s, t have equal support (if 
no permutation can let them have the same support, then synchronisation in any order is zero). 
Then we have r || (s || t) = r * sat(s * sati) by Lemma 1251 hence 

r II ( s II = r * * T t) — ( r * as ) * aT ^ = ( r * as ) * Tt — (r || s) || t 

CT.reGM ct.teGM ct,tGGM 

using associativity of strict synchronisation and the fact that, for a fixed a, the permutations ar 
and t range over the same set. This extends to all vectors by linearity. 

Associativity implies compatibility with observational equivalence: for two equivalent vectors 
u k, u' and an arbitrary v G C(X), for all w G C(X) we have [(u || v) \\ w\ = [u \\ (v || w)\ = 
\v! || (v || w)J = l(u' || v) || w\ so u || v « u' || v. 
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Since observational equivalence is preserved by permutations, using commutativity of strict 
synchronisation we have 



s II T = s * ar = a (a 1 ,s*r)w <r 1 s*r = r * er 1 s = T || s. 

ctGGM ctGGM ctGGM <r6Gl r l 

which proves commutativity of permuted synchronisation up to observational equivalence. □ 

27 Lemma. Let X be an arena and let (ui)nzj be a finite family of vectors in C(X). There exists 
a vector e and an integer n > such that for all i € /, Ui \\ e = nu%. 

Proof. Observe that for all finite subset A of X, every setwise stabilizer of A is a stabilizer of 
the A-neutral play ca, so we have sate^ = /i (e^) ca, and subsequently for all play s e S(X) 
such that \s\ = A we get s |[ e^i = // (e^) (s * ba) = fi (ca) s. Call P the set of all r such that 
the play r has a non-zero coefficient in some Uj, then P is finite since each Uj is a finite linear 
combination of plays. Let n be the least common multiple of the [i (e^) for in P, then the 
vector 



E 



satisfies e\\ui — nui for each i by construction. Note that the coefficients n//i (e^) are all natural 
numbers, by construction. □ 

28 Corollary. // S is regular then outcome is preserved by observational equivalence. 

Proof. Let u ~ v be a pair of equivalent vectors in C(X). By Lemma I2"T1 there is a vector e and 
an integer n ^ such that u|| e = rat and u || e = ra;, so we have n \ u\ = [u || ej = || ej = n [wj ■ 
By regularity, we can deduce [u\ — [v\ . □ 

As a consequence, the order algebra A(X), which is defined as the quotient of C(X) by 
observational equivalence, is a commutative semialgebra over § with synchronisation || as the 
product, and outcome [ - J is a linear form over it. The choice of representants for orbits of finite 
sets and plays induces the following representation property of A{X) in the static algebra _4(|X|). 

29 Proposition. Let X be an arena. Define the linear map Ax : C(X) — > C(X) as 

A x (u) := s&t x u x . 

For all u, v G C(X), 

uk, x v if and only if A x (u) Ki\ X \ A x (v). 

Hence A x is an infective map from A(X) into A(\X\). For all !i,u£ A{X), 

A x (u || v) = A x (u) * A x (v). 

Proof. For compatibility with observational equivalences, first suppose that u and v are such that 
sat it ~\ x \ sat v. Consider a play r G S(X), then we have [u \\ r\ = [satu*rj = [satu^rj = 
[v || r\ using Lemma [231 so we have u «j v. 

Reciprocally suppose u ~ x v, then by definition for all play r G <S(X) we have [u \\ r\ = 
[v || r J . By the remarks above, the outcome [u \\ r\ is equal to [r \\ u\ = |r.*sat;uj, so we 
have [r * sat uj = [r * sat vj for all r. Let s be an arbitrary play in S(X). Writing u as a linear 
combination ^2 ieI Ajfj, we get [sat u * s\ = [sat fj * sj . If |s| is not a representant subset 

of \X\, then this sum is zero since sat is a combination of plays whose supports are representant 



11 



subsets. The same applies to v so we have [sat u * s\ = [sat v * sj = 0. Now suppose that |s| is a 
representant subset of \X\, then the representant s of s has the same support as s by definition, 
so there is a permutation a such that as = s and <r|s| = \s\. For all i 6 I, if rJ = |s|, 
then by definition of saturation we have a sat r$ = sat r; , so we get [sat * sj = [sat r j * sj . If 
I ft I 7^ |s|, then the equality holds trivially since both sides are 0. By linearity, we can deduce 
[sat u * s\ = [sat u * sj , and applying the same reasoning to v, from our initial remarks we deduce 
[satu * sj = [satw * sj. Hence we get satu ~\x\ sat v. 

For the commutation property with synchronisation, consider two plays r, s £ <S(X). If the 
supports |r| and |s| are distinct, then clearly Ax(r \\ s) = Ax(r) * Aj(s) = 0. Otherwise, let 
A be this support. If p is a permutation in G x such that pr — r, we have r \\ s = p(r || s) — 
pr || s = r || s. Moreover, r || s = r * sat s so all terms in r \\ s have support A, and since for all 
play t with |i| = A we have sat t = sat t, we get 

satr || s = sat(r || s) = cr(r || s) = err || s = err * ts — satr * sat s 

aeG A aeG A aeG A reG A 

which concludes the proof. □ 

The commutation property could actually be written Ax(u \\ v) = Ax (it) || Ax(v) since 
permuted and static synchronisations coincide in the static order algebra .A(|X|), but we keep 
the notations distinct to stress the fact that the second is static. This establishes an injective 
morphism of §-semialgebras, however this morphism does not preserve outcomes: for a play s, 
we have [AsJ = j}(Gl s ') [sj; since this factor depends on \s\, the outcome of A(u) is not even 
proportional to that of u in general. 

30 Proposition. Let X be an arena. Assume § is rational. Then the S-seraialgebra A(X) has a 
unit element if and only if the web \X\ is finite. 

Proof. Suppose \X\ is finite, then the set of plays S(X) is finite, so we can apply Lemma [771 to 
the whole set S(X), which provides a vector e and a non-zero integer n such that e || s = ns 
for all s € S(X); then e/n is a neutral element for synchronisation. Now suppose that \X\ is 
infinite. Let u be an arbitrary vector in C(X). Since u is a finite linear combination of plays 
with finite support, there is an integer n such that all non-zero components of u are plays with 
supports of cardinal strictly less than n. Let A be a subset of |X| of cardinal n, then we must 
have u \\ = =/= e^. This implies that no finite linear combination of plays can be neutral. □ 

2.3 Bases 

In this section, we describe the §-semimodule A(X) by providing a subset of plays whose equiv- 
alence classes forms a basis. Linear independence does not have a unique definition for modules 
over arbitrary semirings [3], so we state the appropriate definition for our needs, which clearly 
extends the standard one for vector spaces: 

31 Definition. Let § be a semiring and E a semimodule over S. A family (ui)i e i in E is linearly 
independent if, for any two families (Ai)igj and (pi)nzj in § with finite support, if J^iei X t Ui = 

P-iUi then for all i, Aj = //j. A basis of E is a linearly independent generating family. 

We first concentrate on the case of static order algebras. The first thing we can remark 
about observational equivalence is that plays of different supports are always independent, since 
compatibility explicitly requires having the same support, so we have the following decomposition: 
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32 Proposition. For a finite static arena X, let C S (X) be the submodule of C(X) generated by 
plays of support X. Define the strict order algebra over X as the submodule A S (X) of A(X) 
made of equivalence classes of elements of C S (X). Then for all static arena X we have 

A(X) = A S (Y). 

Yev s (x) 

Proof. Clearly C(X) is the direct sum of the C S (Y), since this decomposition amounts to par- 
titioning the basis S(X) according to the supports Y of its elements. As a consequence, A(X) 
is the sum of the A S (Y), and we have to prove that this sum is direct. Consider two vectors 
u = Y^YeVf(X) u y an d v = J2yev f (X) v y sucn tnat u ~ v an d f° r au Y S Vf (X), uy, vy G C S {Y) 
(necessarily, only finitely many of the uy and vy are not 0). For each Y G Vf (X), we have 
u * ey — uy and v * ey — vy, so uy w vy since * is compatible with «. As a consequence, the 
decomposition of a vector in A(X) on the submodulcs A S (Y) is unique. □ 

We can thus focus on the study of strict order algebras. These have the definite advantage 
of being finitely generated, since there are finitely many different binary relations over a given 
finite set. We will now provide explicit bases for them, depending on the structure of S. 

Let A be a finite static arena. Clearly, for all inconsistent plays r we have r s=s 0, so we can 
consider only consistent plays, i.e. plays r such that ^ r is an order relation. In the following 
statements, as a slight abuse of notations, a play r with \r\ — X is identified with its order 
relation < r , and also with its equivalence class in „4 S (A). Let 0(A) be the set of all partial 
order relations over A. 

The notations < r , > r , > r are defined as expected. We denote by | r the incomparability 
relation: x \ r y if and only if neither x ^ r y nor y ^ r x. We write x \\ r y if x = y or x \ r y. If 
there is no ambiguity, we may omit the subscript r in these notations. The notation [a < b]x, 
for a, b G A, represents the smallest partial order over A for which a < b, that is idx U {(a, b)}. 
The notation extends to more complicated formulas, for instance [a < b, c < d] is the smallest 
partial order for which a < b and c < d. We write r ^ s to denote that two partial orders r and 
s are compatible. 

33 Proposition. Let T(A) be the set of total orders over X , then T(A) is a linearly independent 
family in ,4 s (A). 

Proof. We prove the equivalent statement that two observationally equivalent combinations of 
total orders are necessarily equal. Let u = X)teT(X) ^tt an d v = X)teT(X) f 1 ^ ^ e ^ wo combi- 
nations such that u w v. If r and s are two distinct total orders over A, there exists a pair 
(a, b) G A 2 such that a < r b and b < s a, hence r and s are not compatible, so [r * s\ = 0. 
Besides, it always holds that \r * rj = 1, so for all t G T(A), \u * t\ = A t and [v * t\ = fit, so 
u ~ v implies A t = \i t for all t, hence u — v. □ 

However, in general, T(A) is not a generating family for A 8 (X). The simplest counter- 
example can be found if A has two points. Write A = {a, b}, then 0(A) has three elements: 

0({a,b}) = {[a\b],[a<b],[a>b}}. 

Then in the canonical basis ([a | b], [a < b], [a > b]) of C S (X), the matrix of (u, v) n> [u * v\ is 

GiO 
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If § is the field of reals, for instance, then this matrix is invertible, which means that the three 
orders are linearly independent, hence A S (X) is isomorphic to (this isomorphism holds if 

and only if the cardinal of X is at most 2, as we shall see below). There is one case where [a < b] 
and [b < a] do generate A s ({a, b}), namely when addition in § is idempotent, i.e. when 1 + 1 = 1. 

34 Proposition. T(X) is a basis of A S (X) for all X if and only if addition in S is idempotent. 

Proof. By Proposition 1331 we know that T(X) is always a linearly independent family, so all we 
have to prove is that it generates A S (X) if and only if 1 + 1 = 1 in S. 

Firstly, assume that T(X) generates A S (X) for all X. Then, for X = {a, b}, there are two 
scalars A,/i£S such that [a | 6] ~ A [a < b] + /i[a > £>]. Then we have 

[[a | b] * [a < b}\ = A [[a < b] * [a < 6] J + fx [[a > b] * [a < b]\ = A 

but by definition we have [[a \ b] * [a < b]\ = 1, so A = 1. Similarly, we get fj, = 1, and so 
[a | b] — [a < b] + [a > b]. As a consequence, we have 

1 = [[a | b] * [a | 6]J = [[a <b]*[a | b}\ + [[a > b] * [a | 6] J = 1 + 1. 

Reciprocally, assume § satisfies 1 + 1 = 1. Let X be an arbitrary finite set and let r 6 0(X). 
Let u = ti be the sum of all total orders that are compatible with r. Consider an arbitrary 

order s £ O(X). Then we have [u * sj = X)<=i * S J an d each term of this sum is or 1. If s 
is compatible with r, then there is a total order t that extends both r and s, so £ is one of the 
U; since s and t are compatible, the sum contains at least one 1 so [u * s\ — 1 = \r * s\ . If s is 
incompatible with r, then it is incompatible with any order that contains r, and in particular it 
is incompatible with all the ti, so [u * s\ = = \ r * s\ . As a consequence we have r ~ u, which 
proves that T(X) generates A S (X). □ 

In the general case, without any hypothesis on the semiring S, it happens that the family of 
all orders over X is not linearly independent, as soon as X has at least three points. 

35 Proposition. For all semiring S, in Cg({x,y, z}) we have 

YOYO) 

Proof. We use the following notations: a := [x < y], b := [x < z < y], c := [x < y,x < z], 
d := [x < y, z < y], so that the equation we prove is a + b = c + d. Let s be a partial order over 
{x,y, z}. First remark that s ^ a if and only if s ^ c or s ^ d Indeed, assume s ^ a, then 
there is a total order t that contains a and s. If x < t z then [i < z] C t so a * [i < z] C (, 
hence s ^ a * [x < z] = c. Otherwise z < t x <t y so z < t y then s ^ d. Reciprocally, if s ^ c 
or s ^ d then s ^ a since a is included in c and d Secondly, remark that s ^ b if and only 
if s ^ c and s d. Indeed, assume that s ^ c and s ^ d. Let s' = s * c = s * a * [x < z]. 
Suppose s' [z < j/], then y < s / z. By hypothesis we cannot have y < a * s z, so (y,z) occurs in 
s' but not in (s * a) U [x < z], which implies y < s * a x. This contradicts the hypothesis x < a y, 
hence s' ^ [z < y], so s ^ a * [x < z] * [z < y] = b. The reciprocal implication is immediate 
since a C 6 and d <Z b. As a consequence of the two remarks above, we have [a * sj = 1 if 
and only if [c * sj = 1 or |_<i * sj = 1, which is equivalent to [(c + d) * sj G {1,2}. Moreover, 
|_(c + d) * s\ — 2 if and only if [c * s\ =1 and [d * s\ = 1, which is equivalent to |_b * sj = 1. 
Therefore [(a + b) * s\ = |_(c + d) * sj . □ 
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This proposition applies to orders on three points, but the exact same argument applies in 
any larger context, since the proof never uses the fact that there are no other points than x, y, z. 
So for any play r and points x,y, z £ |r| such that x < r y, x \ r z and y \ r z we have 

r + (r * [x < z < y]) « (r * [x < z\) + (r * [z < y]). 

This can also be deduced from Proposition [35] using the partial composition operators defined 
in Section 13.11 When § is a ring, it allows us to express each of the patterns of the equation in 
Proposition [35] as a linear combination of the others with coefficients 1 and — 1. This implies 
that for each of these patterns, the set of all orders over X that do not contain the considered 
pattern generates A S (X). In each case, the forbidden pattern defines a particular class of orders, 
respectively weak total orders (as of Propositionl36"lbelowL orders of height at most 2 and forests 
with roots up or down. 

36 Proposition. Let {X, ^) be a partially ordered set. The following conditions are equivalent: 

• For all x,y, z G X, if x < y then x < z or z < y. 

• The relation \\ is an equivalence. 

• There is a totally ordered set (Y, ^) and a function f : X —> Y such that, for all x, y € X , 
x <y if and only if f(x) < f(y). 

Let W(A) be the set of orders that satisfy these conditions, called weak total orders over X . 

Proof. Firstly, assume that for all x,y,z G X, if x < y then x < z or z < y. It is clear that || 
is always reflexive and symmetric. Let x,y, z G X such that x \\ z and z || y. If x < y, then by 
hypothesis we must have x < z or z < y, which contradicts the hypothesis on x,y,z. Similarly 
we cannot have y < x, so x || y. Therefore || is transitive and it is an equivalence relation. 

Secondly, assume || is an equivalence relation. Let Y be the set of equivalence classes of |. 
Define the relation Z on Y as A Z B if a ^ b for some a G A and b G B. The relation Z is 
reflexive since for all A G Y, for any a G A we have a ^ a so A Z A. Assume A Z B and 
B Z A for some A, B G Y, then there are a, a' G A and b, b' G B such that a ^ b and b' ^ a'; 
if a < b' then a < a' which contradicts a | a', similarly if b' < a then b' < b which contradicts 
b' || 6, so a || b' , which implies that A and B are the same class, therefore Z is antisymmetric. 
Assume A Z B and B Z C for some A,B,C G Y, then there are a G A, b, b 1 G B and c G C 
such that a ^ b and b' ^ c; if a \\ c then A — C hence A Q C, otherwise we must have a < c or 
c < a, but the second case implies b' ^ c < a ^ b which contradicts b || 6', so a < c and A Z C, 
hence Z is transitive. Totality is immediate: if A and B are two distinct classes, then every pair 
(a,b) G A x B is comparable. Let / be the function that maps each element of X to its class. 
If x < y then f(x) Z f{y) by definition. Reciprocally, if f(x) Z f(y), then x and y must be 
comparable (since they are in distinct classes), and y < x would imply f(y) C f(x), so x < y. 

Finally, assume there is / : X — >■ Y where Y is totally ordered such that x < y if and only if 
f(x) < f(y). Let x, y, z be such that x < y, then f(x) < f(y). Since the order on Y is total, we 
must have either f(x) < f(z) or f(z) < f(y) (or both), hence x < z or z < y. □ 

In other words, a weak total order is a total order over sets of mutually incomparable points. 
Interestingly, this kind of order was considered long ago in scheduling theory [25] as the possibility 
to label events with time stamps in a possibly non-injective manner. It turns out that weak total 
orders form a basis. 

37 Definition. Let r G O(X). Two elements a, b G X are equivalent in r, written a ~ r b, if for all 

c G X \ {a, 6}, a < r c if and only if b < r c, and c < r a if and only if c < r b. For a pair a ~ r b 
with a^b, let r/(a ~ 6) be the order r n (X \ {b}) 2 over A \ {b}. 
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38 Definition. Let a,b £ X with a^b. For each r G 0(X \ {&}), define the relations 

r a ~b - rU {(x, b) \ (x, a) G r} U {(b, x) \ (a, x) G r}, 
r a <b ■= »'a~b U {(a, 6)}, r a>fc := r a ^ b U {(6, a)}. 

Clearly, r ar ^b, r a <b and r a> b are partial orders over X in which a and 6 are equivalent. 

39 Lemma. Let a, b be two distinct elements of X . For all r G W(X) and s € 0(X \ {&}), 

• if a < r b then r ^ s a ^b if and only if r ^ s a< b, moreover r •/> s a> b, 

• if a> r b then r ^ s a ^b if and only if r ^ s a> b, moreover r s a< b, 

• if a \ r b then r ^ s a ~6 if and only if r ^ s a <h if and only if r ^ s a >6- 

Proof. If a < r b, we have r U s a ^f, = r U s a <&, since s a ~& and s a < b only differ on (a, 6), so the 
compatibility of the two pairs is equivalent to this union being acyclic. The same argument 
applies to the case a > r b. For the case a \ r b, first assume r ^ s a ^b and let t = r * s a ^b- By 
definition of weak orders, we have a ~ r b. lia <tb then there exists a sequence a = do, . . . , a n = b 
such that for each i < n, a* < r flj+i or aj < Sa ^ b aj+i, but since a and 6 are equivalent in both 
r and s^b, we can replace b with a in this sequence, which leads to the contradiction a < t a. 
By the same argument we cannot have b < t a, so a \t b. We thus have t ^ [a < b] hence 
Sa<t = Sa~b * [a < b] ^ r, and similarly r ^ s a >b- The reverse implications are immediate since 
s a ^,b is included in both s a< b and s a >h- d 

40 Proposition. IfS is a ring, then for all finite set X , W(X) is a basis of A S (X). 

Proof. Let Z(X) be the submodule of all the u G C 8 (X) such that for all order r over X, 
[u * rj = 0. We actually prove the fact that C S (X) is isomorphic to the direct sum ®Z(X), 
which is equivalent since by definition A S (X) is C S (X)/Z(X) when the semiring § is a ring. 

We first prove that for all order r over X there is an s G § w ( x ) such that r — s G Z(X). 
Let N(r) — {(a,b,c) G X 3 \ a < r b,a \ r c,b \ r c}, we proceed by induction on $N(r). If r = 0, 
then by Proposition l3"ol we have r G W(X), so we can set s = r. Otherwise, consider a triple 
(a, b, c) G N(r). Define the orders ri := r * [a < c], r% := r * [c < 6] and r3 := r * [a < c < £>]. 
By Proposition 1551 we have T\ + r2 — ra — r G Z(X). Besides, for each i G {1,2,3}, clearly 
N(n) C N(r) and (a, 6, c) G N(r) \ N(n), so tfiV(ri) < |iV(r). We can then apply the induction 
hypothesis to get an s, G § W W such that r, — Sj G Z(X). We can then conclude by setting 
s := si + s 2 - s 3 . 

As a consequence we have C S (X) = + Z(X), and we now prove that this sum is direct 

by proving n Z(X) = {0}. We proceed by recurrence on the size of X. If X has or 1 

element, then the only order over X is the trivial order t, and [t * t\ = 1 ^ 0, so Z(X) = {0} 
and the result trivially holds. Now let n ^ 2, suppose the result holds for all X with at most 
n — 1 points, and let u G S w ( x ) n Z{X). We now prove that it is the zero function. 

Let r be a weak total order that is not a total order, let a, b G X such that a \ r b. Let X' = 
X \ {&}. Define v! G S w ( x "> by u'(t) = u{t a ^ b ) for all t G 0(X'), so that u(r) = u'(r/(a ~ 6)). 
For any orders s G W(X) and t G O(X'), by Lemma I3U1 we have that [s * (t a< b + t a>b — t a ~&)J 
is if a and b are comparable in s, otherwise it is equal to l-s * i a ~fcj, which is itself equal to 
[s/ (a ~ 6) * tj by restriction to X'. Let s' = s/(a ~ b), we have 

* {ta<b + t a >b ~ *a~fe)J = X! U ( S ) L s * ta~b\ = ^ u'(s')[s'*t\ 

seW(X),a\ s b seW(X),a\ s b 

The mapping s s/(a ~ 6) is a bijection from weak total orders over X such that a | 6 to weak 
total orders over X', so the latter sum is equal to YIb'eW(X') u '( s ') I s ' * = l u ' * Besides, u 
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is in Z(X) so [u * (t a< b + t a >b — t a ~b)\ = 0, which implies \u' *t\ — 0. This holds for all t, so 
it' e Z{X'). By construction we have u' € S w ( x "> so u' is in S w(x,) n Z(X'). By the induction 
hypothesis this is {0}, so v! = and as a consequence we have u(r) = u'(r/(a ~ 6)) = 0. 

By the argument above, we thus know that u(r) = as soon as r is not a total order. In 
other words, u is a linear combination of total orders. From Proposition [33] we know that total 
orders are linearly independent in A S (X), so we can conclude that u = 0. □ 

As a consequence, weak total orders on subsets of \X\ form a basis of the static order algebra 
A(X). We can extend this property to arbitrary order algebras using the representation property. 

Theorem. Let X be an arena. Then A(X) has a basis (bi)i^i made of plays if 

• § is idempotent, then the hi are the orbits of totally ordered plays under G x , or 

• S is a regular ring, then the bi are the orbits of weakly totally ordered plays under G x . 

In both cases, ifS is rational, then there exists a family of vectors such that for alli,j G /, 

[pi || b*\ is 1 if i — j and otherwise. 

Proof. Propositions [33] and EUJ provide bases of the appropriate kinds for strict static order 
algebras. By Proposition [35] these yield bases for static order algebras. In each case, call the 
elements of these bases base plays. A permutation of a (weak) total order is always an order 
of the same kind, so from the fact that base plays generate .4(|X|), we deduce that they also 
generate A(X). Now consider two linear combinations u = Yliel ^ iTi an< ^ v = M« r ij where 
the Ti are distinct base plays for \X\ and representants (as of Definition . and suppose u w v. 
By Proposition wc can deduce ^ ieJ AiSatri ~\x\ J2iei ^ sa ^ r *' anc ^ tlh s equivalence is 
an equality since both sides are linear combinations of base plays. Now consider any i £ I. In 
Ai sat r^, the coefficient of is \ix ( r i)i so the equality above implies /ix A$ = \ix (^i) fJ-i, 
and subsequently = fj,i since [ix (ri) is a non-zero integer and § is regular. Hence representants 
of base plays form a basis of A(X). 

If S is an idempotent semiring, then by Proposition [3H the family is made of total 

orders, so if we set b* — bi for each i we have the expected property. 

Now suppose S is a rational ring. Let A be a representant finite subset of \X\. Call a\, . . . , a n 
the subset of the basis whose plays have support A, and let M = (m^) be the nx n matrix such 
that rriij = [a* \\ aj\. M has coefficients in natural numbers, and since the family (a^) is linearly 
independent by hypothesis, M is invertible in Q. Since § is a regular ring, it is an algebra over 
Q, so M is also invertible in S. Let M^ 1 = (mjj) and let a* :— X)J=i m ij a ii then by construction 
\_ai || a* J is 1 if i = j and otherwise. □ 

Observe that if S is a rational ring, then in particular it is an algebra over Q, then As(X) = 
§<£) Aq(X) as Q-algebras, since all plays decompose uniquely as linear combinations of base plays 
with integer coefficients. The outcome in .4§(X) then appears as the tensor of the identity over § 
and the outcome over Aq(X). The algebra Aq(X) further decomposes into the direct sum of the 
strict order algebras ^4q(^) for all representant subset Y with the permutation group induced 
over it. This is particularly useful since the Aq(Y) are finite dimensional vector spaces over Q. 

On the other hand, if § is neither idempotent nor a regular ring, it is possible that there is no 
base. For instance, if § = N, then clearly a play s cannot be decomposed as a non-trivial sum of 
vectors, so any generating family must contain all plays, but then the equation of proposition [351 
states that they are not linearly independent. 
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3 Logical structure 



In this section, we describe constructions on order algebras. Although order algebras themselves 
have some interesting structure, the actual objects we are interested in are submodulcs of such 
algebras, hereafter called types, which enjoy better properties. 

42 Definition. A type over an arena A is a submodule of A(X) generated by a family of plays in 
S(X). A type is strict if it does not contain the empty play. The notation A : X is used to 
represent the fact that A is a type over X. A morphism between types A : X and B : Y is a 
linear map / from A(X) to A(Y) such that f(A) C B. 

The requirement that types are generated by plays is justified by the idea that a type should 
be a constraint on the behaviours of processes, and that such a constraint should boil down to a 
constraint on the shape of plays that a process can exhibit. We could also define a type over X 
simply as a subset S of 5(A), but the definition as submodules makes it clear that observationally 
equivalent vectors should belong to the same types, even if one is a combination of plays in S 
while the other is not (this can happen even if S is closed under permutations, because of the 
equation of Proposition 155")) . 

43 Example. The intended meaning of order algebras is that vectors, that is linear combinations of 
plays, represent processes. Then types impose constraints on the possible behaviours of processes, 
based on the possible interactions scenarii they may exhibit. For instance, we can define the type 
of processes that perform three actions of label a, as the submodule generated by the plays that 
contain three points in the orbit a. Similarly, we could define the type of all plays that include 
as many a's as 6's. 

Typed may also used in particular to impose well-formedness conditions. For instance, when 
modelling a calculus like tt that includes communication of bound names, one wants to impose 
that any play that contains an event on a bound name also contains the event that communicates 
this name. 

44 Example. Note that the condition of being a submodule of A(X) imposes non-trivial conditions. 
For instance, consider the CCS algebra, as of Example [31 with S idempotent. We can define the 
type of processes in which all actions a are causally independent of all actions 6, as generated by 
the plays where all occurrences of a are incomparable with all occurrences of b. This type does 
not contain the processes a. b and b. a, obviously, but it does contain their sum a. b + b.a, which is 
observationally equivalent to the parallel composition a \ b. 

45 Proposition. If § is a rational ring, then for all type A : X there is a family of plays (cj)j e j 
and a family of vectors (c*)igj in A(X) such that (cA^i is a basis of A and for all i,j G /, 
\_Ci || c*\ is 1 if i = j and otherwise. 

Proof. Recall that if § is a rational ring, then it is an algebra over Q and A§(X) can be seen as 
the Q-algebra § ® Aq(X). Since A is generated by plays, we can then decompose it as S ® A' 
for a type A' in Aq(X), so it is enough to prove the result in the case S = Q. In this case A is 
a subspace of the vector space Aq(X), so it is a standard result that from the generating family 
we can extract a basis. 

Now assume that (cj)jg/ is a basis of A, and consider a particular base play c„. Set J := 
{i £ I \ \ci\ = \c n \}. Then (cj)j e j is a basis of the intersection of A and .A s (|c n |, G' c ™'), the strict 
order algebra over \c n \ with the induced permutation group, which is a finite-dimensional Q- 
vector space. Let / be a linear form over this algebra such that f(c n ) = 1 and for all j G J \ {i}, 
f(cj) — 0. Using the bases (b n ) and (&*) from Theorem I4T1 we can define c* = J2\b k \=\c n \ f(bk)b* k 
and check that for all vector x with |x| = c„ we have f(x) = [c^ \\x\. Then c* satisfies the 
expected condition. □ 
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3.1 Products and linear maps 

When combining order algebras, we need a notion of combination of arenas. Disjoint union is 
the simplest way, and also the most sensible one: 

46 Definition. Let (Xi)jgj be a family of arenas with pairwise disjoint webs. Define the sum of 
the family (JQ) as 



We use equivalently the infix notation X\ + X2 + • • • + X n for finite sums. 

47 Example. Following on our first examples, if Xa and Xb are the arenas used for modelling CSP 
processes over alphabets A and B respectively (see Example (2), then assuming A and B are 
disjoint the webs \Xa\ and \Xb \ are disjoint too and Xa+Xb is actually the arena for processes 
in the alphabet A l±! B. 

This sum can be seen as a coproduct in a suitable category of arenas. At the level of order 
algebras, however, this operation is not a Cartesian product or coproduct, and not even a tensor 
product in the sense of §-algebras, because the algebra A(X + Y) contains more plays than those 
that appear as disjoint unions of a play in \X\ and one in \Y\. However, A(X + Y) contains 
products and tensors as submodules, hence our definition of types. In all statements below, 
unless explicitly stated, different arenas are always supposed to be disjoint. 

48 Proposition. For all types A : X and B : Y , A + B is a type over X + Y that is isomorphic to 
the direct sum and Cartesian product of A and B. 

Proof. A is a submodule of A(X), which is itself obviously a submodule of A{X + Y). Similarly, 
B is a submodule of A(X + Y), and since X and Y are disjoint, so are A and B, since no 
permutation in X + Y can map a point of |X| to a point of \Y\. Hence the submodule generated 
by A + B = (A U B) in A(X + Y) is a direct sum of A and B. □ 

49 Definition. Let X be an arena, let Y be a subset of |X| closed under permutations in G x . 
Restriction to Y is the linear map resy over C(X) such that for all r E S(X), 



Restriction of a play r to a given subset Y C \X\ amounts to ignore the part of r that 
happens outside Y, considering that events in \X\ \ Y are private, hence unobservable. The fact 
that Y must be closed under permutations is in accordance with the intuition that two plays are 
indistinguishable when they are permutations of each other. 

50 Example. Following on example IT71 resx A ■ C(Xa + Xb) C(Xa) precisely represents CSP's 
restriction operator that maps a trace t to the restricted trace t \ A. 

Hence, as we shall see (in detail in Section I4.3p . restriction does not correspond to the 
hiding operator (u) of the 7r-calculus and related languages. Indeed, the externally observable 
behaviours of (vu)P are those of P that do not involve an event on u, which to mapping to 
all plays in P that contain an event on u, before actually restricting to the arena that does not 
contain events on u. 

51 Note that in the definition we impose a coefficient [^J on the restricted play. Since the outcome 
[rj is or 1 for any play r, this amounts to imposing that resy r be if r is inconsistent. This 
condition is necessary because we want outcomes to be preserved by restriction: if a play is 
inconsistent, it means that it contains some deadlock, and hiding the place where this occurs 




resy r := |rj • (|r| n Y, < r n Y 2 ) 
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surely should not resolve the deadlock. For instance, an inconsistent play like ( a ), when 

restricted to {a}, would yield the consistent play ( a»). 

Incidentally, this implies that resx : C(X) —> C(X) is not the identity, because it collapses all 
inconsistent plays to 0. However, up to observational equivalence, it is the identity. 

52 Proposition. Restriction is compatible with observational equivalence. 

Proof. First observe that, since Y is supposed to be closed by permutations, restriction commutes 
with permutations, hence A(resy u) = resy A(it). Then by the representation property (Propo- 
sition HI]), if u ~ v then A (it) ~\x\ so it suffices to prove that restriction is compatible 
with observational equivalence in static arenas. 

Let Z be a finite subset of \X\ \ Y, define extz as the linear map such that for all t G S(X), 
extzt is the play on \t\ U Z, whose preorder relation is extended as the identity relation on 
Z. Let r be a play in S(X) such that |r| \ Y = Z. Suppose r is acyclic, then for all play s with 
\s\ U Z = \r\ the relation ^ r U ^ s is acyclic if and only if (^ r R Y 2 ) U ^ s is acyclic, so we have 
\r * extz s\ — [resy r * s\ . If r is not acyclic, then the equality holds too since both sides are 0. 
The equality extends trivially to all plays s such that \s\ C Y. 

Consider a pair u ~|xi v an d a pl a y s S S(X) with |s| C Y. By Proposition 1321 we can 
decompose it as X^ceP (pt|) Uc w i^h u c S C S (C) and similarly for v so that for each C we have 
u c ~\x\ v c- For a given C, let Z = C \ Y, then by linearity of the equation in the previous 
paragraph we get [resy uz * sj = \ uz * extz s\ for all play s with \s\ C Y, and by the equivalence 
of uz and vz we get [rosy uz * s\ = [rosy vz * s\ . This trivially holds too if \s\ (jt Z ', so we get 
the equivalence resy uz ~ resy i;^ , and we deduce resy it « resy D by linearity. □ 

53 Definition. Let X, Y, Z be three arenas with pairwise disjoint supports. Define partial static 
synchronisation along X as the bilinear map *x from C(X + Y) x C(X + Z) to C(X + Y + Z) 
such that for all r e S(X + Y) and s e S(X + Z), 



r *x s 



(|r|u|s|,« r U< s )*) if |r|n|X| = |s|n|X| 
otherwise 



Deduce partial permuted synchronisation as 

r \\ x s := fix (resx s) 2J r *x s ' 

s'GG x {s) 

54 Example. Consider an arena X containing at least two interchangeable actions labelled a,\,a,2 
and arenas Y and Z containing events b and c respectively. Then we have the partial static 



synchronisation 



fll I W c ! 

b* « a 2 / V al 1 ,a 2 



al 

V b 



and the partial permuted synchronisation 



•0,2 / llX \ al' '0-2 




The factor [ix (resx s) (which is 1 in this example) plays the same role as in full synchronisation 
(Definition remarking that we only apply permutations on the X part. 
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Proposition. Let X, Y, Z be three arenas with pairwise disjoint supports. Partial synchronisa- 
tion along X is associative as 

(« \\ X V ) Wx+Y+Z W = U Wx+Y ( V Wx+Z W ) 

for all u G C(X + Y), v £ C(X + Z) and w G C(X + Y + Z). It is compatible with observational 
equivalence and commutative up to equivalence. 

Proof. Let X, Y, Z be three disjoint arenas. Consider three plays r G S(X + Y), s G S(X + Z) 
and t G S(X + Y + Z). The partial synchronisations (r *x s) *x+y+z t and r *x+y (s *x+z t) 
are non-zero if and only if we can define 

A = |r| n \x\ = \s\ n \x\ = \t\ n \x\, b = \r\ n \y\ = \t\ n |y|, c = \s\n \z\ = \t\ n \z\, 

and in this case the result is the play on A U B U C whose preorder relation is U ^ s U ^t)*, 
so we have 

(r * x s) *x+y+z t = r * x +y (s *x+z t). 

Assume representants are chosen in each arena in such a way that for D C \X\ and E C 
DUE = D_U E, and similarly ior X + Z and X + F + Z. Choosing representants this way is 
always possible since permutations of X, Y and Z are independent in the sum arenas. Suppose 
r, s, t and A, B, C are representants. G A is the same in all sums of arenas that involve X, and 
similarly for G B and G c . Moreover we have Q AuBuC — G A x G B x G c , and similarly for other 
unions, so by similar considerations as for permuted synchronisation, we get 

( r \\x s ) Wx+y+z 1 = * x CTaS ) *x+y+z o-' A a B a c t = /^r * x +y (o- a s * x +z o-' A a B o- c t) 

= J2r* x +Y o- A o- B {s *x+z o-' A a c t) = r \\ X+Y (s \\ x+z t) 

where the sums are indexed on (a a, o-'a>o~b,o~c) £ G A x G A x G B x G c . Partial synchronisation 
commutes with permutations so this equality extends to plays that are not representants, and 
by linearity is extends to arbitrary vectors. 

Now consider u, u' G C[X + Y), v G C(X + Z) and w G C(X + Y + Z), and suppose u « v! . By 
the same arguments as in the proof of Proposition[5H we get the equality [u \\ x +y ( v \\x+z w )\ = 
[it || resx+Y(v \\x+z w )\^ t nen u ~ u ' implies that these are equal to \y! \\ x +y ( v \\x+z w )J > 
and applying associativity on this we can deduce u \\ x v ~ u' \\ x v. Commutativity of partial 
synchronisation is obvious, and it yields the compatibility with observational equivalence on the 
right. □ 

By similar arguments, we prove other "localized" associativities, the general case being 

\\a+b v ) Wa+c+d w = u Wa+b+c ( v Wa+d w ) 

for u G A(A + B + C + E), v G A{A + B + D + F) and w G A(A + C + D + G), where 
A, B, C, D, E, F, G are seven (!) pairwise disjoint arenas. Although this formulation is fright- 
eningly heavy, the point is rather simple: when partially synchronising two vectors u and v, 
synchronise them along the arenas they have in common, and the result will be on the union of 
the arenas of u and v. 

The simplest case of partial synchronisation is when "synchronising" two vectors u G A(X) 
and v G A(Y) along the empty arena, yielding u || v G A(X +Y). In this case, u and v are 
essentially kept independent, which in particular implies 

[u || v\ = [u\ [v\ . 
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This is deduced by linearity from the case of plays, remarking that for r 6 S(X) and s £ 5(F), 
r H0 s is the disjoint union of r and s, which is consistent if and only if r and s are consistent. 

56 Definition. Let X and F be two arenas. Define the bilinear map <g> from A(X) x A(Y) to 
A(X + Y) as « ® 11 := m |L v. For two types A : X and B : Y, define A (8 f? as the submodule of 
.A(X + F) generated by the image of A x B by (8>- 

Simply put, A®B is the §-module consisting of processes that can be written as juxtapositions 
of a process in A and a process in B with no scheduling constraint between them, or as a sums of 
such things, up to observational equivalence. As illustrated in Example 1441 this does not imply 
that any vector Xhgj ^« r » ^ A® B is syntactically a sum of itj ||g Uj with itj 6 A and m S -B. 

57 Proposition. J/ § is a rational ring, then for all types A : X and B : Y , A® B is the tensor 
product of A and B in the sense of S-algebras. 

Proof. By Proposition's] the types A and B have bases (&i)ie/ and (cj)j^j, and there are families 
of vectors and (c*)j e j such that each 6* identifies 6„ among the elements of and 

similarly for c*. We prove that the vectors hi |L Cj are linearly independent. Consider a linear 
combination u = j)eix,j ^ij (^« II c i) m -^(-^ + Y)- For each (m, n) E I x J we have 

L M llx+Y ( 6 m 110 C n)\ = Xmn K bl lltf C J') Hx+y ( 6 ™ II C «)J 

= X rnn[(bi\\ x b* m )\\ (c j \\ Y C* n )\= ^ A m „ L&i || X Ki\ l C j \\y C n\ 

(ij)ezxj (i,j)eixj 

using the associativity properties stated above. By definition of b* m and c*, the only non-zero 
term in the final sum is for (i,j) — (m,n), and this term is A„ m . Applying this on every (m,n) 
implies the unicity of the decomposition of u on the b m ® c n . So the b m (£> c n form a linearly 
independent family, which proves that A ® B is isomorphic to the tensor product of A and _B, as 
S-modules. The associativity property ensures that they are also isomorphic as §-algebras. □ 

58 Definition. Let X, Y and Z be three arenas. Let u € A(X + Y) and u 6 A(Y+Z). Composition 
of u and v through Y is the vector uo Y v := rcsx+z(u ||y w) G ^l(A + Z). 

Let A : X and B : 7 be two types. The type A ^> B : X + Y is the submodule of _4(X + F) 
generated by all plays r such that for all u E A, r o x u e B. 

By the remarks above, we get associativity of composition. In the special case where X is 
the empty arena, A(X + F) is equal to A(Y) and u oy v is a vector in Z, so i> induces a linear 
map from A(Y) to A(Z). However, this mapping from vectors of A(X + F) to linear maps from 
A(X) to -4(F) is neither injective nor surjective. 

It is easy to check the standard adjunction A — o (£> -o C) = (A <E> B) -o C for all types 
A, B, C of pairwise disjoint supports. Moreover, if we call 1 the non-trivial type over the empty 
arena, which is isomorphic to S, we have for all type A that A®l = l®A=l-oA = A. 

3.2 Bialgebraic structure 

59 Definition. Let X and F be two arenas. Define the indexing of F by X as the arena 

X>Y := (|A| x |F|,G X x (G r ) |x| ) 

where permutations act as 

(a,(p)(x,y) := {ax,Lp(x)y) 
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We interpret indexing as follows: |Jf>Y| consists of copies of Y indexed by points of A. 
A permutation in A > Y consists in permuting each copy independently, using the function 
ip : \X\ — > G Y that provides a permutation for each copy and then permuting the copies 
themselves using a permutation in X. 

Note that we easily get the equality (X + Y) > Z = (X> Z) + (Y > Z), however X > (Y + Z) is 
not equal to (X>Y) + (X>Z), since permutations of copies in the former operate the same way 
on the copies of X and those of Y, while in the latter they may not. There is also an isomorphism 
between (X > Y) > Z and X > (Y > Z), and these appear as (|X| x \Y\ x \Z\, G x x (G Y )W x 

( G Zj\X\x\Y\y 

The structure of the indexing arena is used only for identifying and permuting copies, in 
particular we will not consider plays on this arena. The primary purpose of indexing is to build 
an arena in which the symmetric algebra over a given type will fit. It also generalises the direct 
sum when the indexing arena is static. 

60 Definition. Let 6(N) be the arena with |G(N)| = N, the set of natural numbers, and G e(N) = 
©(N), the group of all permutations of N. For all arena X, define jjA :— <5(N) > X. 

So the arena 6(N)> X contains a countable number of interchangeable copies of X. Another 
useful construct is the following: identifying each integer n with the set {0, . . . , n — 1}, which is 
in turn identified with the static arena with this set as the web, the arena n\> X is isomorphic to 
the sum X + • • • + X with n independent copies of X. If n = 0, this yields the empty arena 0. 
Then n > jjA = n > 6(N) > X contains a countable set of copies of A, partitioned into n countable 
classes of interchangeable copies. 

61 Definition. Let n be a strictly positive integer, let ip be a bijection from n x N to N. For all 
arena A, define the function 7™ : S(n > jjA) — > iS(jJA) as 



where tt\ is the first projection, so 7Ti(|s|) = {i | (i,x) £ \s\}. 

The function 7" is a simple renaming of the copies of A using the function ip, which extends 
the bijection (i:nxN->Ntoa bijection between S(n > )JA) and cS(jjA). As explained below, 
this bijection is compatible with observational equivalence, but its quotient is not injective. 
Instead, it fuses the n independent copies of jjA into one, which makes events from different 
copies interchangeable. 

The linear map 5 n acts as a non-deterministic inverse operation. Given a play s in 5(jjA), 
it enumerates all possible ways of partitioning the events of s into n identified subsets. The 
function c represents such a choice, and c • r applies this choice to the play r. 

As we shall see, the operators 7™ and S n are very similar to a multiplication and comultipli- 
cation in a bialgebra. They are analogous to concatenation and deconcatenation, which give a 
bialgebraic structure to tensor algebras [25 ■ 

62 Proposition. Let X be an arena and let n be a strictly positive integer. The maps 7™ and S are 
compatible with observational equivalence and the quotient map of is independent of ip. For 
all vectors u S A(n > )JA) and v £ .A(jjX) we have 





v wjx u || 
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Proof. Observe that for any permutation a £ Qn>w>$x ^ e a f amU y f independent permutations 
on each copy of X in nojLY) there is a permutation a' £ Q N|> tl x suc h that 7^o<r = er'07™, and the 
other way around for S n . As a consequence, by Proposition[55J we can deduce the expected result 
from the case where X is static. Then all considered permutations are in 6(n x N) and (5(N). 

The map 7" decomposes as the injection of C((n > 6(N)) > X) into C(&(n x N) > X) and 
the renaming of &(n x N) > X into @(N) > X through ip. The former consists in growing the 
permutation group on a fixed web and the latter is an isomorphism, so both are compatible 
with observational equivalence. For S n , given a permutation a £ 6(N) and a play s, for all 
choice function c for trs we have c» as — o~'{c' • s) with d = co a and a'(i,j) = (i, a(j)), which 
establishes a bijection between the choices of s and those of as. From this we can conclude that 
S n is compatible with observational equivalence. 

Let r £ S(n > PO: let s £ <S(tUQ and let </? be a bijection from n x N to N. Assume s is a 
representant. First suppose 7£(r) \ s \> then 7™(r) || s is zero. Suppose that there is a choice c 

such that [c • s j = |r|, then we get a permutation a £ G ral>tlx that induces a bijection from |c • s\ 
to |r|. By definition a is a bijection between the pairs (c(i), i) and 7Ti(|r|), which can be extended 
into a bijection ip from n x N to N, such that | C 7 ") | — N- This contradicts the hypothesis 
|7^( r )| 7^ N since y£(r) and 7.0 (r) are necessarily permutations of each other, from the remarks 
above. Hence for all c we have |c • s\ ^ \r\, so r \\ S n (s) = 0, and the equality holds. 

Now suppose |7S(?")| = I s I- Applying a suitable permutation to r and choosing <p appropri- 
ately (we know from the above remarks that these operations are allowed) we can assume that 
7™(r) is a representant, so 7£(r) | = \s\, and 7^(r) || s = X^o-eG l P r * as ~ So-eG r * </ 3 ~ 1o ' s j where 
G is the group of permutations of \s\ induced by G" x , that is the symmetric group of 7Ti(|s|). For 
each a £ G, the function iritp~ 1 a is a choice function c CT over 7Ti(|s|), and a*(i,j) := {i, a~ x tp(i, j)) 
is a permutation in G nl>N such that a*(p~ 1 a(i) — (c T (i),i), hence a*ip~ 1 a(s) — c a • s. By par- 
titioning the sum for t e G according to choice functions, we get 7™(r) || s ~ EcXiagG c =c r * 
cr* _1 (c cr • s). By construction, for a fixed c, we have {cr'* _1 | a' £ G, c CT / = c} — Qn^/j*- 1 ^ so 
we get 7™(r) || s «pc 2 C r Hn>|jJf (c» s) = r || n>j)Jf <5™(s), from which we conclude by linearity. □ 

As a consequence, A{$X) has the structure of a commutative algebra with 7 2 as the multipli- 
cation and the empty play as the unit. The S 2 does not make it a bialgebra in general, because 
for an arbitrary u £ A($X), 5 2 (u) £ „4(jJA + ftX) has no reason to be in the tensor product 
A($X) (X) A($X). The reason is that a given play in S(jLY), the components of <5 2 (r) are not 
disjoint unions of plays on the two copies of §X, but they may contain scheduling constraints 
that involve both copies. We do get a bialgebra if we restrict to the case of plays in which all 
copies stay independent. 

Definition. Let X be an arena. For all integer n and play r £ S(X), define the play n»r £ S(§X) 
as in Definition [§T] for the constant function n. This obviously induces an isomorphism between 
A(X) and -4({n} t> X), which maps each type A : X to an isomorphic type n • A : {n} > X. 
However, the {n} > X for distinct n are disjoint. 

The arena {«} > X is included in flX, let e n : C(X) — x C($X) be the inclusion map. Clearly 
all the e n are compatible with observational equivalence and their quotients are all equal. Name 
e : A{X) — x A{$X) the quotient map. 

For all type A : X, define the type \A : flX as 

n-l 

\A:=^2-f n {A n ) where (A n : n>X) := • e(A)) 

nGN i=0 
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Define the degree of a vector u € IA as the smallest integer d(u) such that u is in the partial sum 
£„^( U )7"04"). 

For all type A : X, the type \A : §X is again a commutative algebra with 7 2 as the product 
and the empty play as the unit. The degree function makes it a graded algebra, intuitively the 
degree of a vector u is the maximum number of different copies of A that u uses. If the type 
A is strict (i.e. if it does not contain the empty play) and § is rational, then \A is isomorphic 
to the symmetric algebra of A. The strictness condition means that each copy of A is actually 
used, without this hypothesis the isomorphism fails because all powers of the empty play are 
necessarily equal to the empty play in I A. 

The linear map S 2 also makes \A a cocommutative coalgebra whose counit is the linear form 
that maps the empty play to 1 and non-empty plays to 0. It is routine to check that the algebra 
and coalgebra structure are compatible, making IA a bialgebra. Interestingly, if A is the unique 
strict type on the singleton arena (which is isomorphic to §), then \A is isomorphic to the 
bialgebra of polynomials in one variable over S. 

3.3 Towards differential linear logic 

The mapping A i-> IA is a functor in the category of types and linear maps. The map e from 
the definition above is a natural transformation from A to \A, and by choosing a bijection from 
N x N into N we get a natural transformation from !! A to I A which makes \A into a monad 
(the choice of a particular bijection is unimportant, for the same reasons as in Proposition 1621) . 
The quotient of the linear map that sends each play n • r to r and all other plays to zero is a 
natural transformation from \A to A, and using any bijection from N to N x N we get a natural 
transformation from \A to \\A, which also makes A a comonad. 

We can also check the isomorphism \{A®B) ~ \A ® \B for any strict types A : X and B : Y 
over disjoint arenas. The first type is in the arena 6(N) > (X + Y) and the second one is in 
(@(N) > X) + (@(N) > Y); these arenas are not isomorphic but the types themselves are thanks 
to the definition of the direct sum. 

All these considerations show that the structure of our types supports most constructs of 
differential linear logic |17j . including additives, multiplicatives and exponentials with structural 
and costructural rules. However, the construction is not yet a model of differential logic, for 
several reasons: 

• One crucial thing that lacks in our framework is the axioms. They do not fit in the present 
work because our objects are too finitary: all vectors are finite linear combinations of finite 
plays, hence there can be no vector in A — o A that is neutral for composition as soon as 
A is not finite dimensional. The reason is similar to the case of units for synchronisation 
in Proposition [301 an d solving this defect requires a radical extension of this work, as 
explained in the introduction. 

• The proper notion of duality needed to interpret logic, or equivalently the definition of the 
type _L, is not clear at first sight. This type must be defined on the empty arena, and our 
notion of type only leaves two choices: 1 = .4(0) and {0}. The first one is degenerate given 
our definition of A — o B, the second one yields orthogonality with respect to the bilinear 
form (u, v) i y [u || v\ (note however that this bilinear form is not a scalar product, because 
it is not positive). We will not explore this case here because it exceeds the scope of the 
present work. 

• Of course, building a model of linear logic requires to prove that the interpretation of proofs 
is preserved by cut-elimination. Most tools are present for this, assuming we restrict to 
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an ill-structured logical system without the axiom rule. Here again, we defer this task to 
further work, as the questions of axioms and duality obviously have to be answered first 
for this to be of interest. 



4 Interpretation of process calculi 

In this section, we detail how process calculi can be interpreted in order algebras. As a particular 
case to work on, we use the 7r-calculus with internal mobility [33] j that is the fragment of the 
7r-calculus where output actions can only send fresh names. Most development here could be 
carried out in other similar calculi. Had we used CCS, essentially everything would have been 
the same up to section 14.31 in which the definition of arenas would have been simpler because 
of the mostly trivial name structure of CCS. The full 7r-calculus, on the other hand, would have 
required the handling of equality tests between names, which is perfectly doable at the cost of 
trickier definitions; this exceeds the scope of the present work. 



4.1 Quantitative testing 

We consider the 7r-calculus with internal mobility, or 7rl-calculus, extended with outcomes from 
a commutative semiring S. We consider the monadic variant of the calculus for simplicity, but 
using the polyadic form would not pose any significant problem. More importantly, we restrict 
to finite processes. 

Definition. We assume a countable set N of names. Polarities are elements of P = {4-, t}. 
Terms are generated by the following grammar: 

branchings S, T := u e L (x).P action, with u, x G TV, e £ P and i £ N 

S + T external choice 

processes P,Q := A outcome, with A e S 

S branching 

P | Q parallel composition 

(yx)P hiding, with x £ N 

In an action u E L (x)P, I is the location, u is the subject, x is the object and P is the continuation. 
The name x is bound in P by the action, independently of the polarity e. 

Terms are considered up to injective renaming of bound names and commutation of restric- 
tions, i.e. (vx)(uy)P = (vy)(vx)P, with the standard convention that all bound names are 
distinct from all other names. We also impose that in a given term all locations are always 
distinct. The set of locations occurring in a term P is written \P\. 

Actions (without continuations) will be ranged over by Greek letters a, fj, so that we can 
write expressions like aP or a.(f3.Q \ R). By convention, an action u^(x) is called positive and 
is also written u(x), an action u (x) is called negative and is also written u(x). More generally, 
if a is an action, we write a for the action with the same subject and the opposite polarity, in 
particular u e (x) is the action of the opposite polarity as u e {x). 

Locations are simply a way to give different identities to different occurrences of a given chan- 
nel name in a term, so we can talk about "the action t" in an unambiguous manner. Renamings 
of these locations are of course unobservable by the processes, so the distinctness condition is 
not a restrictions on the terms we can write. Terms with locations can be seen as decorations 
on standard terms of the 7rl-calculus. 

We want to define an operational semantics in which commutation of independent transitions 
is allowed. To make this possible by only looking at transition labels, we enrich the labels 
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a L .P^P P\Q^%{ux){P'\Q'[x/y\) {ux)P A (vx)P' 

5 A 5' PAP' P^P' 



5 + TAS' T + P|QAP'|Q Q\P^Q\P' 

Table 1: Decorated labelled transition system for the 7rl-calculus 

using locations so that different occurrences of a given action are distinguishable at the level of 
operational semantics. 

65 Definition. Transition labels can be of one of two kinds: 

a, b := u £ (x):l visible action 

{t, k} internal transition 

Transitions are derived by the rules of Table [TJ The notation x ^ a means that the name x does 
not occur (free or bound) in the label a. 

An interaction is a finite sequence of transition labels. A path is a finite sequence of internal 
transition labels. An interaction p — a\a2 ■ ■ ■ a n is valid for P, written p £ P, if there are valid 
transitions P —A Pi —A ■ • • P n . 

The use of decorations to define a parallel operational semantics was first proposed by Boudol 
and Castellani as "proved transitions" [H1II2, and the technique we use here can be seen as a 
simplification for our purpose. It is clear that for all term P and interaction p, there is at most 
one term P/p (exactly one if p £ P) such that there is a transition sequence P A P/p (up to 
renaming of revealed bound names). Note that by removing all locations from labels (replacing 
{l, k} by r) one gets the standard labeled transition system for the 7rl-calculus. For this reason, 
we allow ourselves to keep locations implicit when they are not important. 

66 Definition. Prefixing in a term P is the partial order ^p over \P\ such that i <p k when in 
P the action at location n occurs in the continuation of the action at location i. Two labels 
a and b are independent, written a // p b, if all locations occurring in a or b are distinct and 
pairwise incomparable for prefixing. Homotopy in a term P is the smallest equivalence «p over 
interactions of P such that pabq rj p pbaq when a // pb. 

Two execution paths of a given term are nomotopic if it is possible to transform one into the 
other by exchanging consecutive transitions if they are independent. Prefixing generates local 
constraints which propagate to paths by this relation. 

67 Proposition. Let p and q be two interactions of a term P such that p and q are reorderings of 
each other, then p ~p q and P/p — P/q. 

Proof. We first prove that for any interaction a\ . . . a n b 6 P such that b G P we have a\ . . . a n b «p 
ba\ . . . a n and P/(a\ . . . a n b) — P/ (ba\ . . . et„), by induction on n. The case n = is trivial. For 
the case n ^ 1, remark that the hypothesis implies a\ // b: if some location in a\ was less than a 
location in b then b could only occur after a\, which contradicts b € P, and a\ £ P also implies 
that no location in b is less than a location in a%. Therefore we have ba\ £ P and ba\ «p a\b. 
The equality P/ a\b = P/ba\ is a simple check on the transition rules. Applying the induction 
hypothesis on P/a\ yields ba2 ■ ■ ■ a n «p a2---a n b and P j a\ba,2 ■ ■ ■ a n = Pjba\02 . ■ . a n from 
which we conclude. The case of arbitrary reorderings follows by recurrence on the length of p 
and q. □ 
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68 Definition. A pre-trace is a homotopy class of interactions. A run is a homotopy class of 
maximal paths. The sets of pre-traces and runs of a term P are written V(P) and TZ(P) 
respectively. The unique reduct of a term P by a pre-trace p is written P/p. 

Runs are the intended operational semantics: they are complete executions of a given system, 
forgetting unimportant interleaving of actions and remembering only actual ordering constraints. 
A pre-trace can be seen as a Mazurkiewicz trace [14] on the infinite language of transition labels, 
with the independence relation from Definition 1661 except that, because of our transition rules, 
each label occurs at most once in any interaction. 

We now define a form of interactive observation, in the style of testing equivalences, that 
takes this notion of homotopy in account. Standard testing leads to interleaving semantics, so 
we have to refine our notion of test, and that is what outcomes are for. The set 8 is a semiring 
in order to represent two ways of combining results: multiplication is parallel composition of 
independent results and addition is combination of results from distinct runs. 

69 Definition. The state s(P) £ § of a term P is defined inductively as 

«(A) := A, s(S):=l, s{{vx)P) := s(P), s(P | Q) := s(P) s(Q). 

The outcome of a term P is |_PJ = X) P e7j(p) s (P/p)- Two terms P and Q are observationally 
equivalent, written P ~ Q, if [P | R\ = [Q | R\ for all R. 

In other words, the outcome of testing P against Q is the sum of the final states of all 
different runs of P\Q. Note that this sum is always finite since we only consider terms without 
replication or recursion, hence all terms have finitely many runs. Classic forms of test intuitively 
correspond to the case where § is the set of booleans for the two outcomes success and failure, 
with operations defined appropriately. This particular case is detailed at the end of Section 14.41 

4.2 Decomposition of processes 

In this section, we prove several properties of terms up to observational equivalence. The purpose 
is to decompose arbitrary terms into simpler terms from which we will be able to easily extract 
a semantics in order algebras. 

70 Definition. Let P be a term and let p G V{P) be a pre-trace of P. By Proposition EH p is 
identified with the set of its labels. 

• The causal order in p is the partial order ^ p on labels in p such that a ^ p b if a = b or a 
occurs before b in all interactions in p. 

• The outcome of a pre-trace p is defined as [p\ := s(P/p). 

This presentation is much simpler to handle than explicit sets of runs, so this is the one we will 
mainly use. Interactions that constitute a given pre-trace are simply the topological orderings of 
this partially ordered set of transitions. Traces in our sense are a further quotient of pre-traces, 
defined and studied in Section |4~31 

71 Proposition. Observational equivalence is a congruence. 

Proof. Consider a family of equivalent processes (Pj ~ Qi)i<^i<^ n , and let (ai)i<^i^ n be a family 
of actions on fresh locations ftj. Let P = X^i ^--^ anc ^ Q = ^27=i a i-Qi' we P rove P — Q- 
Let R be an arbitrary process. The set 1Z(P | R) can be split into n + 1 parts: the set IZo of 
runs where no action oc% is triggered and the sets IZi of runs in which on is triggered, for each i. 
Then for each run p G IZi, there is a position i such that {/Cj, l} G p. Let p\ be the partial run 
{a | a G p, a ^ p {/Cj, ;,}}, that is the minimal run that triggers on; we have (P\R)/ pi = (yx)(Pi\R') 
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commutativity 

associativity 

neutrality 

scope commutation 
scope extrusion 
scope neutrality 

inaction 
non-interference 



P\Q~Q\P 
(P\Q)\R~P\(Q | P) 
PI 1 ~ P 



(vy)(ux)P 
P | (ux)Q 



(ux){vy)P 
(vx){P | Q) 
(ux)X ~ A 

(uu)u E (x).P ~ 1 
(uu)(u(x).P | u(x).Q) 



{vux){P\Q) 
Table 2: Basic equivalences. 



S+T-T+S 

(S + T) + U ~S+(T + U) 



with x fh(P) 



for some a; and R'; let p2 — p\pi, so that p 2 is a run of Pi \ R' and (P \ R)/p — {vx)(Pi \ P')/p 2 . 
Let Si be the set of triples {p\,R',p2) for all p S 7^,. Obviously 72.(P | P) is in bijection with 
TZ W |+)™ =1 5, and 

[p\r\=Y, < R /p) + E E s « p * i #)//») 

Now let £, = {(pi,P') | 3,02, {pi,R',P2} S 5;}, and let (pi,R') G £». Since P^ contains all the 
runs of P | P that trigger c^, it contains all the runs of Pi | R' since Pi \ R' can be reached from 
P | P, so we have {p2 | (pi, R', P2) & Si} = R(Pi \ R'), hence 

J2 s((p i \R')/ P2 )= J2 E s((p i \R')/ P )= J2 l^i^'j 

By hypothesis, for all R' we have [Pi \ R'\ = [Qi \ R'\ so 

n 

peTCo i=i ( Pl ,R')ec z 

since the reasoning above equally applies to Q. Therefore we get P ~ Q. 

For parallel composition, let R and 5* be arbitrary terms. It is clear that (P \ R) \ S and 
P I (P I S) have the same runs and that their reducts by a given run are the same up to the 
same associativity, so for all run p we have s(((P | P) \ S)/p) — s((P | (P | S))/p) and therefore 
L(P I P) I SJ = LP I (P I «5)J . Similarly we get [(Q | P) | SJ = LQ | (P S)J , and by hypothesis we 
have P ~ Q so |P | (P | 5) J = LQ I (P S 1 )] , from which we conclude. 

The equality [{vx)P | PJ = |_(" z)Q I R\ is justified by the fact that [{ux)P | PJ and |P | PJ 
are equal if the name x is fresh with respect to P. □ 



Proposition. The equivalences of Tabled hold. 

Proof. For every equation A ~ B in the list except non-interference, it is clear that for all term T 
we have 1Z(A \ T) — 1Z(B | T) and that the reducts by any run p differ in the same way. Since these 
rules preserve states, in each case we get |yl | PJ = [A \ T\ , hence the expected equivalence. For 
the non-interference rule, remark that all runs of (vu){u L (x) .P\u K (x) .Q) | P contain the transition 
{i, k}, because of maximality and the fact that P cannot provide actions on u. The reduct by 
this transition is (yux){P \ Q) \ R, and its runs are those of the original term without {l, k}, so 
it has the same outcome. □ 
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commutative monoid: P © Q ~ Q © P (P ® Q) ® R ~ P ® (Q ® R) P © ~ P 

scalar multiplication: • P ~ 1 • P ~ P AiA 2 • P ~ Ai • (A 2 • P) 

(Ai + A 2 ) • P ~ (Ai • P) © (A 2 • P) A • (P © Q) ~ A • P © A • Q 

linearity of operators: P | (Q © P) ~ (P | Q) © (P | R) P | (A • Q) ~ A • (P | Q) 
(i/a;) (PffiQ) ~ (i/a;)P © (i/a;)Q (i/x) (A • P) ~ A • (ux)P 

Table 3: Module laws over processes. 



Thanks to these properties, when considering processes up to observational equivalence, we 
can consider parallel composition to be associative and commutative. In this case we use the 
notation Yiiel ^* ^° denote the parallel composition without interaction of the Pi in any order 
(assuming only that I is finite). 

In order to study processes up to observational equivalence, we will now describe some of 
the structure of the space of equivalence classes. The first ingredient is to identify an additive 
structure that represents pure non-determinism. 

Proposition. Let lis be the set of equivalence classes of processes over the semiring of outcomes 
S. For all terms P and Q and all outcome A, define 

P © Q ■= (uu)((u.P I u.Q) | u.l) where u is a fresh name, 
X-P:=X\P 

Then (IIs,©,0, •) is a S-module, parallel compositions are bilinear operators and hiding is linear, 
i.e. the equivalences of Tabled hold. 

Proof. We first show that, for all terms P, Q and R, [(P © Q) \ R\ = [P | PJ + \Q \ R\ . Consider 
1Z((P®Q) \R) = lZ((i/u)((u Ll .P\u L2 .Q) \u K .l) \R). It is clear that any run contains an interaction 
of u.l with either u.P or u.Q, since none of these may interact with anything else. We can thus 
write TZ((P © Q) \ R) = IZi W 7vL 2 where IZi is the set of runs that contain (ti, k) and 7tL 2 is the 
set of runs that contain (/, 2 , k). The runs in TZ± are the runs of (t/u)(u Ll .P u) \ R and each of 
these runs has the same outcome in both terms, so 

^ s(((P®Q)\R)/p) = L(i/u)(u tl .P|u)|JiJ = L^I^J 

by the non-interference rule of Table [5J By a similar argument, we get the same for 7£ 2 and 
[Q | PJ , so we finally get [(P © Q) \ R\ = [P \ PJ + [Q \ PJ . This equality and the fact that 
(S, +,0) is a commutative monoid implies that (IIs,©,0) is a commutative monoid (where is 
the atomic term with outcome 0). 

For any terms P and Q and any outcome A, it is clear that [(A | P) | QJ = A [P | Q\ , since 
the term A has no transition and contributes A multiplicatively to all outcomes of the term. This 
directly implies that the operation A • P has all required properties. 

For the bilinearity of compositions, using the equation [(P © Q) \ PJ = [P | PJ + [Q \ PJ 
and associativity and commutativity of parallel composition we get that parallel composition 
distributes over ffi, and the fact that is absorbing is equivalent to the rule • P ~ 0. Linearity 
of hiding is immediate from the scoping rules and the fact that L(^a;)Pj = \_P\ always holds. □ 

Observe that all syntactic constructions induce linear constructions on equivalence classes, 
except for the action prefix, which is not linear but actually affine. Indeed, for an action a, 
the term a.O is not equivalent to 0: it will be neutral in executions that do not trigger a, and 
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Linearity: d.(P © Q) ~ d.P © d.Q d.(A • P) ~ A • d.P {vu)u e (x).P ~ 

Asynchrony of inactions: d.(/3.0 | P) ~ /3.0 | d.P if the subject of /3 is not bound by a 

Composition of inactions: a i-® I SieJ — ^ ai = ^ or some i € I>3 € J 

J2itiuJ a *-® otherwise 

a.O + a.O ~ a.O 
Table 4: Laws of linear actions and inactions. 

multiply the outcome by (thus annihilating it) in runs that do. It can be understood as a 
statement "I could have performed a but I will not do it" so that any run that contradicts this 
statement has outcome 0. The purely linear part of actions is the opposite: the linear action 
a.P will act as a.P if its environment actually triggers the action, but will turn to if it is never 
activated. 

74 Definition. For all action a and term P, the linear action of a on P is 

a.P := {vw)(a.(P \ w.l) \ w.O \ w.l) where w is a fresh name. 

An interaction is said to trigger the linear action if it triggers the action w.l. Terms of the form 
a.O are called inactions. 

This definition has the expected behaviour because of the maximality of runs. If a.P is in 
active position, then any run that does not trigger a must instead trigger w.O, hence any such 
run has outcome 0. A run in which the term d.P does not produce must activate a, so that 
w.l acts instead of w.O. 

In this respect the action d is linear, in the sense of a linear resource: it must be used exactly 
once, otherwise the process must evolve to 0, as stated by the third equation of Table [U As 
proved below, it is also linear as an operator P i— > d.P. These two features are deeply related: 
internal choice and outcomes may commute with the action prefix only if we know for sure that 
the prefix will eventually be used. 

75 Proposition. For all families of actions (aj)jgj and processes (Pj)j £ j, 

cti.Pi ~ dj.p © Y Oii.0. 
iei iei iei 

The function P i— > d.P is linear and the equivalences of Table^4\ hold. 

Proof. For linearity, we use the fact that [d.P | QJ is the sum of the s((d.P | Q)/p) for the 
runs p that actually trigger a (and the witness action w.l). If P = A | P' for some A G §, 
these runs are the same in d.(A | P') \ Q and d.P' | Q, but the outcomes are multiplied by A 
in the first case, so [&.(X | P') \ Q\ = A • [a.P' | QJ and d.(A | P') ~ A | d.P'. If P = Pi © P 2 , 
the choice is eventually active in all relevant runs, so each of these runs triggers either Pi or 
Pj. We can thus establish a bijection between lZ(a.(P\ © P2) | Q) and the disjoint union of 
lZ(a.P± I Q) and Ti.ia.P2 \ Q). Since outcomes are preserved by this bijection, we finally get 
Ld.(Pi © P 2 ) I QJ = Ld.Pi I QJ + Ld.P 2 I QJ and (Pi © P 2 ) | Q ~ (Pi | Q) © (P 2 | Q). 
The equivalence (uu)u e (x).P ~ can be deduced from previous equations: 

{uu)u e {x).P = {uuw){u e {x).(P I w.l) I (w.O I w.l)) 

~ {uw){{uu)u e {x).(P I w.l) I (w.O I w.l)) 

~ {vw){l I (w.O I w.l)) ~ (vw)(w.O I w.l) ~ {vw)(0 I 1) ~ 
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For the decomposition, let / and g be the functions from n§ to § such that f(Q) — 
L(E ie / Oi.Pi) | Q\ and g(Q) = L(0 je7 &i-Pi © E l£ / "i-O) I Q\ = E, e / ft(Q) + 9o(Q), we prove 
/ = g. By previous remarks we have g{Q) = X^ig/ l&i-Pi \ Q\ + a i-® I *3j • Given a term 

Q-i ^((Ste/ a i-Pi) I Q) decomposes into T^o for the runs that trigger none of the ajj and a 7^ for 
all runs that trigger on, for each i. Clearly, 7?-o contains the runs of XneJ^i-O I Q that do not 
trigger any ot%, and all other runs of this term have outcome 0, so the sum of the outcomes of 
runs in is go(Q). For each i, the runs of TZi are in bijection with runs of (Xi-Pi \ Q that trigger 
Ui and they have the same outcomes, and all other runs of this term have outcome 0, so the sum 
out the outcomes of these runs is gi{Q). As a consequence, we get the expected decomposition 
f = 9o + Y,iei9i- 

For the equivalence a.(/3.0 | P) ~ /3.0 | a.P, assuming the subject of (3 is not the bound name 
of action a, let Q be an arbitrary term and consider lZ(a.((3.0 \ P) | Q). Any run that does not 
trigger a or that triggers both a and f3 has outcome 0, so the only relevant runs are those that 
trigger a but not (3. Clearly these runs are the same as the runs of ((3.0 | a.P) \ Q that trigger a 
and not (3, and they have the same outcomes. 

For the composition of inactions, the relevant runs of a term (J2iei a i-® I J2ieJ a -®) I ^ are 
those that do not trigger any of the en, so the number of occurrences of each ai does not matter, 
and the fact that they are in a branching or in parallel does not matter cither, as long as the 
branchings cannot interact. The only special case is when there are i £ I and j E J such that 
OLi = 5ij, then each run must trigger one branching or the other, if nothing else by letting oti and 
ctj interact. As a consequence, all runs of this term have outcome 0, so the composition of the 
two branchings is indistinguishable from 0. □ 

Definition. A term is simple if it is generated by the following grammar 

simple term P, Q := I, N, a.P, (P | Q), {vx)P 
inaction set N := a^.O 

A pre-trace p £ V(P) is exhaustive if it triggers all linear actions and no inaction, and no sub- 
term of P/p has the form Q \ R with Q containing some a.O and R containing a.0. The set of 
such pre-traces is written V e (P). 

Simple terms have the property that the outcome of any run is either 1 or 0. More precisely, 
it is easy to see that the outcome of a run is 1 if and only if it triggers all linear actions and no 
inaction. The notion of exhaustive pre-trace is the correct extension of this notion to pre-traces, 
indeed every run of a simple term P \ Q with outcome 1 is made of an exhaustive pre-trace of 
P and an exhaustive pre-trace of Q. The condition on P/p simply rules out interactions of P 
that lead to a term P' where there are dual inactions that may interact, since that would imply 
P' ~ 0, as a generalization of the equation a.O | a.O ~ 0. Observe that, by the decomposition of 
Proposition 1751 and the linearity of all constructions of simple terms, we immediately prove that 
every term is equivalent to a linear combination of simple terms. As a consequence, two terms 
P and Q are equivalent if and only if for all simple term R, \_P\R\ = \Q\ R\. 

4.3 An order algebraic model 

Thanks to the decomposition into simple terms, we are now ready to describe our order algebraic 
semantics. Following the initial intuition, we define a web whose points are action occurrences, 
with a group action that permutes actions of the same name and polarity while making sure that 
bound names are properly updated. We need an extra bit of information to represent inactions, 
and these will be represented as extra actions (somehow "potential" actions) with particular 
treatment. 
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77 Definition. The set C of abstract channels is defined as C := N x (P x N)*. We write u ■ 
sinx ■ ■ ■ e k n k instead of (u, ((e 1} ni), . . . , (e fc , n fc ))). 

The arena E for the 7rl-calculus is such that \E\ = C x P x (NU {_L, T}) and G £ is generated 
by permutations of the form (x, e, a) G C x P x 6(N), acting as 



(x,e,a)(y) 



x ■ ea(n) ■ z \i y — x ■ en ■ z for some neN and z G (P x N)* 
y otherwise 



Abstract channels represent names in a way that allows us to avoid any renamings. Intuitively, 
u (that is (u, ())) represents the free name u itself, u ■ en represents the bound name x in the 
action uf t (x), then u ■ en - e'n' represents the bound name y in x e n ,(y), and so on. So an abstract 
channel is the path to find a given name, free or bound. In a sense, this notion is an analogous 
for names in 7rl-terms of De Bruijn indices. 

We can assume, without loss of generality, that all names in processes we use respect this 
intuition, so that we can mention any name without ambiguity and with no need of renaming. 
Under this hypothesis, given a term P and a pre-trace p G V(P), the term P/p is uniquely 
defined, not up to renaming. Note however that P/p does not respect the intuition on free 
names if bound names were revealed, i.e. if p contains a visible action. With this discipline on 
names, we can assume without loss of generality that the set of free names N is finite. 

Points in the web \E\ are of two kinds. The first kind is x ■ en for the occurrence of polarity 
e at location n of the name x. The second kind is x ■ e_L or x ■ eT for the inaction of polarity e 
with name x\ the use of _L and T is a tool used to encode the behaviour of inactions, with the 
convention that x ■ e_L < x ■ eT if x e .0 is present, and the points are incomparable otherwise. 

A permutation (x,e,a) permutes the locations of the actions of polarity e of the name x 
according to a : N — > N. By definition, the n-th occurrence of polarity e of x, namely x ■ en, 
is renamed into x ■ eo~(n), the m-th occurrence of polarity r\ of the name bound by it, namely 
x ■ en ■ nm, gets renamed as x • ea{n) • rjm, i.e. its location is unchanged but its name is changed 
to reflect the change of its binder, and so on for other bound names. The inactions at x ■ e are 
unchanged since x is unchanged, but those on names bound by x are renamed accordingly. A more 
explicit (but equivalent) construction of the permutation group consists in setting G E := & (N) C 
and defining the action of a G G E as 

a(u ■ £im • • • e k n k ) := u ■ sia(u)(nx) ■ e 2 o-(u ■ £ini)(n 2 ) • • • e k a(u ■ eim ■ ■ ■ e k -in k ^i)(n k ) 

except if n k G {_!_, T} in which case the last pair remains as e k n k . 

78 Definition. A trace is a play t on the web E such that 

• for all x ■ en ■ e'n' 6 |t|, x ■ en € |t| and x ■ en < t x ■ en ■ e'n' , 

• for all x G N and all x = y ■ e'n G \t\, x ■ e_L and x ■ eT are in \t\, and for all y G 
\t\ \ {x ■ e_L, x ■ eT}, x ■ el- and x ■ eT are incomparable with y. 

The first condition is a kind of "justification" condition in the style of game semantics [21] . 
It means that for an action x ■ en G |t|, if the subject x is a bound name, then its binder (the 
action also named x) is also in \t\ and it is inferior in the scheduling order, i.e. it was revealed 
earlier. The second condition means that inactions information must be present for each known 
name and that inactions are not involved in scheduling. 

79 Definition. Let P be a simple term and let p be an exhaustive pre-trace of P. The trace induced 
by p is the trace p* such that 
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• \p* I — { x ' £n I x e :n Gp}U N p , where N p contains x ■ e_L and x ■ eT for all polarity e and 
all name x such that x £ N or x — y ■ en for some y E :n G p, 

• ^ is the causal order (as of Definition [70)1 restricted to visible transitions, augmented with 
x ■ e_L < x ■ eT for each x £ .0 that occurs in P/p. 

Note that the justification condition is satisfied by p*, because in the 7rl-calculus the action 
prefixes are synchronous: in an action u(x).P, the action u(x) that binds x is automatically a 
prefix of all actions on x. However, synchrony is not necessary for this property to hold, the fact 
that the name is bound is the important point: even if internal transitions can occur on a bound 
name, visible transitions are possible only after the name has been revealed by the action it is 
bound to. 

Proposition. To each simple term P , associate the junction \P\ : S(E) — > S such that for all 
t G <S{E), |P](t) := (t{p 6 P e {P) | p* = t}. This function clearly has finite support, so [P] 6 
C(E). Let u I— > u be the linear map over C(E) that inverts polarities and exchanges _L and T . 

Then for all simple terms P, Q, [P\Q\= [P] || |Q]J . 

Proof. By construction, if P and Q are simple terms, then so is P \ Q, so all its runs have 
outcome or 1, thus LP | Q\ is the number of non-zero runs of P \ Q. Every run p G 1Z(P | Q) 
can be uniquely decomposed as a pre-trace p\ G V{P) and a pre-trace p2 G V{Q). Moreover, 
by definition of exhaustive pre-traces, if the outcome of p is 1 then p\ and pi are exhaustive 
pre-traces. 

Now let p\ and p2 be any exhaustive pre-traces of P, we want to compute how many runs with 
outcome 1 they generate. A run p G 1Z(P \ Q) projects to p\ and pi if and only if it establishes a 
bijection from visible actions of p\ to dual visible actions of P2, such that scheduling constraints 
are respected and no opposite inactions exist between p\ and p2- Formulated in traces, this 
means a bijection (p : \pl \ — > \p%\ such that: 

• For all a = x ■ en 6 \p*\, ip(a) = y ■ -iem for some y and m (i.e. actions of opposite polarities 
are matched), and if x G \p\\ then y G IP2I an( A fix) = y. This means that an action on 
a bound name must be matched with an action on another bound name and that these 
names are revealed by actions that were matched together (this is a typical property of the 
7rl-calculus) . 

• The union of the orders ip(^ p *) and is acyclic, which means that <p respects prefixing 
constraints so that we get an actual execution path. 

Such a bijection tp establishes an identification between names revealed in the interactions p\ and 
p2, and the last thing to check is that under this bijection, there are no dual inactions between 
pi and p2- By construction, that there are such inactions if and only if for some name x in N 
or \p*\ and polarity e we have x ■ £_!_ < p » x ■ eT and <p(x) • ->eT < p * x ■ -ie_L, which exactly 
corresponds to a cycle in the union U ^ p *. 

It is routine to check that bijections that satisfy the above conditions are exactly the bijections 
induced by elements of G E such that <f{p\) * p\ = 1 ; the structure of G E is made to ensure that 
the justification condition is satisfied, and the rest is ordering conditions. As a consequence, the 
number we seek is exactly p\ || p\. By summing this on all pairs of exhaustive pre-traces of P 

and Q, we finally get |P I QJ = [p 5 ] II fOlJ ■ □ 

The translation function P M- [P] defined above applies to simple terms, but using the results 
of Section [4.21 we can extend it to all terms by linear combinations. The decomposition of terms 
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as linear combinations of simple terms is not unique syntactically, however all decompositions 
are observationally equivalent by definition, and it is easy to check that the traces induced by 
all possible translations of a given term are the same, so the translation is actually a function 
from terms to vectors in C(E). The space of linear combinations of plays C(E) is larger than 
the set of translations of terms, so by Proposition [SO] if translations of two terms P and Q are 
observationally equivalent in the sense of order algebras then these terms are equivalent in the 
sense of quantitative testing. Hence our final theorem: 

Theorem. Two terms of the nl-calculus are observationally equivalent for quantitative testing 
in a semiring § if and only if their translations in A$(E) are equal. 

4.4 Consequences 

The first consequence of this model is that Theorem WW provides a basis for the set of processes 
in two particular cases: 

• If § is idempotent, then each term is equivalent to a linear combination of totally ordered 
traces. It is the case when S represents standard may or must testing. Then we lose 
the "quantitative" aspect since multiplicities are ignored, and we fall back to standard 
semantics as a special case. We get full abstraction in this case by showing that any base 
play can be implemented as a term of the calculus [5] . 

• If S is a regular ring, terms are combinations of weakly totally ordered traces. We can 
get full abstraction again if we slightly extend the calculus to allow parallel composition 
without interaction [B], this is needed only for the case of traces that contain concurrent 
dual actions. Actually the only needed feature is a multiple prefix {aj., . . . , afcj.P, which is 
enough to represent weakly ordered traces as terms. Simpler modifications of the calculus 
could lead to full abstraction, for instance by imposing a more structured naming discipline. 

Although we will not write the proofs here in full detail, the interpretation of processes is 
compositional, and we can use the constructs of Section [3] to represent syntactic constructs as 
operators on order algebras. Define the arena Ch of channel ends as |C7i| = (N x P)* x (N U 7) 
with 7 = {_L,T}, with permutations of the same kind as in E, then the definition of E from 
Definition [77] reformulates as 

E = (NxP)\>Ch and Ch = I + #({*} + P > Ch) 

up to a simple isomorphism. These equations mean that a process appears as a family of channel 
ends indexed by free names and polarities, and that a channel end contains inaction information 
(the 7 part) and an arbitrary number of interchangeable occurrences (the *) each associated with 
a new channel end per polarity (the P > Ch). 

The explicit mention of the ft operator for the action occurrences allows us to use the 7 and 
5 operators from Definition [HD as a systematic way of treating the inherent non-determinism in 
the multiple occurrences of each name. We can thus define parallel composition of vectors p | q 
in the order algebra as follows: 

• For each channel end x-e in P, apply S 2 : A($Oc) -> A{$Oc+$Oc), where Oc = {*}+P>Ch 
is the arena for an action occurrence. This splits the occurrences of x ■ e into those that 
will interact with Q and those that will not. Extend this to Ch by keeping the inaction 
part unchanged, and apply the same operator independently to each channel end, giving 
an operator 5' : A(E) — s- A{E + (N x P) > jjOc). The %Oc part contains actions that will 
not interact. 
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Table 5: Observation semirings for may and must testing. 

• Do the same for Q, and compose the result with the involution u u from Proposition [50] 

• Partially synchronize S'(p) and 5'(q) on the E part, to represent the actual interaction for 
the occurrences that must interact, which yields a vector u G A(E + (N x P) > (JjOc + 
jjOc)). This partial synchronisation handles the conditions on inactions the same way as 
in Proposition 1501 

• In the result, for each channel end x ■ e in the E part, forget the actions on x ■ e since 
they have interacted, then normalise the inaction part by mapping any y ■ sT < y ■ e_L 
to the reverse order (this is a linear operator since it acts on plays) and inverting again 
the remaining part of Q to get back the original polarities on visible actions. Call n : 
A(E + (AT x P) > (flOc + ftOc)) A{{N x P) > (I + $Oc + ||Oc)) this operator. 

• Finally, contract the action occurrences on each channel end in the result with the operator 
7 2 : A($Oc + )JOc) — > A($Oc) applied on each channel end in TV x P, which defines an 
operator 7' : A((N xP)>(I + #Oc + (JOc)) -> A{E). 

With this definitions, we finally get p\q := Y(n(5'(p) \\ E S'(q))). 

The other operators are easy to define. An outcome A is translated as A.0, where is the 
empty run. Branchings are decomposed as in Proposition [7S1 and the linear action is a linear 
operator that consists in introducing in each play an extra point for the new action, minimal for 
the scheduling order. Hiding a name x consists in mapping to all plays that contain an action 
on x and forgetting the inaction information on x. 

By choosing appropriate structures for S, we can recover the standard may and must test- 
ing [T3]. In both cases we have S = {0, 1,uj}, where uj represents success. Table [5] shows the 
rules for addition and multiplication for may and must. Using this definition it is clear that P 
and Q are equivalent for may or must testing if and only if, for all R, [P | R\ = uj if and only 
if [Q I R\ = uj. Taking for S the minimal semiring {0, f } with 1 + 1 = 1 gives the framework 
studied by the author in a previous work [5], which also leads to must testing semantics. In 
these semirings, all elements are idempotent for addition, so by Theorem 01] the model we get is 
actually interleaving. 
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